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INTRODUCTION 


SECTION  1.  INTRODUCTION 


1.1  Welcome 

Welcome  to  the  Defense  Data  Network,  or  the  DDN,  as  it  is  more  commonly  called.  The  DDN  is  a  powerful 
operational  military  network.  It  might  be  thought  of  as  an  "umbrella"  network  composed  of  several  large 
segments  or  subnetworks.  The  unclassified  portion  of  the  DDN  is  a  subnetwork  known  as  the  MILNET.  The 
MILNET  connects  the  DDN  to  an  even  larger  network  that  includes  military  contractors,  universities,  and 
research  centers;  this  entire  collection  of  interconnected  networks  is  called  the  Internet.  Its  users  number  in  the 
millions.  It  is  the  MILNET  on  which  this  document  focuses. 

The  DDN  New  User  Guide  explains  the  policies,  concepts,  and  conventions  of  the  DDN,  with  major  emphasis  on 
the  MILNET.  The  Guide  contains  an  overview  of  and  a  tutorial  introduction  to  the  DDN,  along  with 
descriptions  of  its  more  interesting  network  programs  and  services.  It  is  not  intended  to  be  a  highly  technical 
document,  and  it  does  not  cover  the  procedures  for  attaching  hardware,  terminals,  or  other  equipment  to  the 
network.  This  information  is  provided  in  other  documents  [1,2). 

Originally,  the  MILNET  was  an  integral  part  of  the  research  network  known  as  the  ARPANET  (after  the 
Advanced  Research  Projects  Agency,  which  was  the  sponsor).  In  1984,  the  MILNET  and  the  ARPANET  were 
physically  separated,  and  gateways^  were  installed  to  al'ow  traffic  to  be  interchanged  between  the  MILNET  and 
the  research  networks  sponsored  by  DARPA  (the  Defense  Advanced  Research  Projects  Agency).  By  1990,  the 
original  ARPANET  technology  had  become  obsolete,  and  the  ARPANET  was  discontinued  in  June  of  that  year. 

The  DDN  affords  its  users  a  wealth  of  services  and  resources.  Many  of  your  colleagues  already  work  on  the 
network,  and  you  will  be  able  to  communicate  with  them  quickly  and  easily  even  though  they  may  be  hundreds 
of  miles  away.  The  DDN  also  allows  you  to  participate  in  discussions  about  topics  of  interest  to  you  and  gives 
you  the  opportunity  to  use  network  programs  and  tools  to  enhance  your  own  capabilities. 

Using  a  computer  network  is  not  difficult.  However,  as  with  any  new  tool,  using  it  proficiently  requires  learning 
some  procedures  and  guidelines  and  practicing  your  new  skills.  The  DDN  New  User  Guide  will  provide  the 
background  information  necessary  to  get  you  started.  We  hope  you  find  it  a  useful  introduction  to  the  DDN. 


1.2  Using  This  Guide 

The  DDN  New  User  Guide  is  written  for  the  beginning  u.ser  and  should  be  supplemented  with  reading  from  other 
sources.  Network-specific  terms  arc  defined  both  in  context  and  in  the  Glossary  (Section  1 1).  Throughout  the 
text,  references  appear  in  the  form  "[n]".  The  bracketed  numbers  refer  to  citations  in  the  Bibliography  (Section 
10),  which  lists  documents  containing  additional  explanatory  or  background  information.  Alst),  check  online  help 
systems  and  the  documentation  that  usually  accompanies  the  network  programs  you  use.  (Watch  for  pointers  to 
online  help  files  when  you  first  access  a  program  or  service.)  We  encourage  you  to  expand  your  knowledge  of 
the  network  by  consulting  these  and  other  information  sources  whenever  you  can. 


'  Gateways  are  special  computers  with  the  capability  of  interconnecting  networks.  Gateways  arc  ncccssar>’ 
when  routing  messages  through  more  than  one  network. 
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The  Guide  is  divided  into  sections  and  subsections,  each  covering  topics  of  interest  to  a  new  user.  A  summary 
of  the  contents  of  each  section  follows. 

•  Section  1  (this  section)  is  a  brief  introduction  to  the  Guide. 

•  Section  2,  The  Defense  Data  Network,  describes  the  stfuclure  of  the  DDN  and  its  adnumsuauon.  It 

also  describes  the  MILNET  and  the  role  of  the  Defense  Network  System  Organi/tuion  (DNSO).  It 
provides  a  brief  historical  sketch  of  the  evolution  of  the  DDN  from  the  original  ARPANET. 

•  Section  3,  Network  Connection,  describes  the  ways  in  which  various  machinc.s  access  the  network. 

•  Section  4,  DDN  TAC  Access,  describes  the  procedures  for  obtaining  and  using  a  TAC  Access  Card 

and  provides  detailed  procedures  for  accessing  the  network  through  a  Terminal  Access  Controller 
(TAC)  or  a  Mini-TAC.  Also  included  is  background  information  that  will  be  helpful  to  TAC  and 
Mini-TAC  users,  such  as  common  error  messages,  TAC  commands,  and  instructions  for  pcrformi.ng 
file  transfers. 

•  Section  5,  Network  Use,  provides  "how-to"  instructions  for  some  of  the  DDN’s  most  useful 
services,  such  as  electronic  mail  programs,  FTP,  and  TELNET. 

•  Section  6,  The  DDN  Network  Information  Center  (NIC),  describes  in  detail  the  databases, 
programs,  files,  documents,  and  services  offered  by  the  NIC. 

•  Section  7,  Security  Considerations  and  Network  Conduct,  explains  the  legal  and  courtesy  standards 
of  the  network.  The  importance  of  host  and  network  security  is  discussed,  and  in  Section  7.1,  the 
requirements  for  legitimate  access  to  the  DDN  are  defined.  Be  sure  to  read  the  etiquette  section 
(Section  7.3).  Adhering  to  the  guidelines  given  there  will  decrease  your  chances  of  unwittingly 
offending  other  users  during  your  first  days  on  the  net. 

•  Section  8,  Network  Concepts  Overview,  provides  some  background  information  on  icmis  and 
concepts  that  a  new  user  might  hear  but  not  understand.  This  section  includes  discussions  on  topics 
such  as  the  Domain  Name  System  (DNS),  network  addressing.  Government  Open  Systems 
Interconnection  Profile  (GOSIP),  and  gateway  concentrators. 

•  Section  9,  Network  Service  Centers  and  Contacts,  describes  network  service  providers  and  how  to 
reach  them.  The  DDN  Network  Information  Center  (NIC)  is  logically  the  first  place  to  look  for 
information  unavailable  at  the  local  level.  The  NIC  can  help  you  solve  network  use  problems, 
locate  documents  and  resouices,  or  identify  appropriate  points  of  contact  (POCs)  for  further 
assistance. 

•  Sections  10  and  n  are  a  Bibliography  and  a  Glossary  of  terms  u.scd  in  this  guide. 

•  The  appendices  contain  information  about  resources  available  to  network  users  and  answers  to  some 
of  the  questions  most  often  asked  by  new  users. 

•  A  feedback  form  is  located  at  the  back  of  the  Guide.  We  encourage  our  readers  to  use  the  form  to 
make  suggestions  or  point  out  errors.  We  value  your  comments  and  suggestions  and  will  consider 
them  for  future  versions  of  the  DDN  New  User  Guide.  You  may  also  send  suggestions  online  to 
N1C@NIC.DDN.MIL. 
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INTRODUCriON 


1.3  Document  Conventions 

This  dcKumcnt  uses  several  printing  conventions  to  identify  the  difference  between  characters  >!)u  tyjx;  (i'lpui) 
and  those  that  a  computer  prints  to  your  screen  (output).  These  conventions  arc  described  below. 

Unless  otherwise  indicated,  all  user  input  is  terminated  by  pressing  the  carnage  return  or  Enter  key  or>  your 
keyboard.  (Pressing  this  key  docs  not  cau.se  a  visible  character  to  be  printed.)  In  tliis  dixumcni,  the  carriage 
return  or  Enter  key  (J)  is  represented  as  <Rctum>.  Both  input  and  output  arc  characicri/.cd  by  a  typewriicr-likc 
font  to  further  differentiate  them  from  the  surrounding  text. 


1.3.1  User  Input  Display 

Your  input  (i.e.,  the  characters  yon  type)  is  represented  in  bold  typeface; 


Your  input  locks  like  this. 


1.3.2  Machine  Output  Display 

A  non-bold,  non-proportional  font  represents  machine  prompts,  messages,  and  other  output. 
Machine  text  looks  like  this. 


1.3.3  Comment  Display 

In  examples  or  instructions,  Italics  indicate  comments  we  have  inserted  for  further  clarification. 
Our  comments  look  like  this. 


1.3.4  Typing  Control  Characters 

In  using  the  network,  it  may  sometimes  be  necessary  for  you  to  type  special  characters  known  as  control 
characters.  These  characters  are  often  reprc.scnied  in  documentation  by  a  letter  prefixed  with  the  circumflex 
character  — e.g.,  *y.  When  entering  these  control  characters,  you  must  press  the  control  key  simultancou.sly 

with  the  desired  letter.  For  example,  if  you  .sec  a  "''y”  in  input  instructions,  this  indicates  a  control-y,  and  u 
means  that  you  .should  prc.ss  the  control  key  while  you  type  the  letter  "y".  Throughou!  this  Guide,  the  control 
key  is  represented  by  the  circumflex,  unless  otherwise  stated. 
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SECTION  2.  THE  DEFENSE  DATA  NETWORK 


2.1  Network  Overview 

When  you  access  a  local  computer,  you  arc  largely  unaware  of  what  kind  of  link  connects  your  terminal  to  the 
computer  you  wish  to  use.  The  terminal  seems  to  be  the  computer,  since  it  prints  or  displays  what  is  happening. 
As  you  progress  in  your  work,  you  may  need  to  move  data  from  your  local  computer  onto  another  computer,  or 
you  may  wish  to  send  a  message  to  a  colleague  working  on  a  computer  at  a  distant  location.  At  this  point,  the 
usefulness  of  a  communication  network  becomes  apparent. 

A  communication  network  is  a  group  of  computers  joined  by  data-carrying  links.  A  network  may  be  as  small  as 
two  or  three  personal  computers  lied  together  by  local  telephone  lines  and  located  in  the  same  building,  or  it  may 
be  a  vast  complex  of  computers  spread  over  the  world,  whose  data  links  include  long-haul  telephone  lines, 
satellite  relays,  fiber-optic  cables,  or  radio  links.  It  is  also  possible  for  several  different  networks  to  be 
interconnected  to  form  an  "internetwork"  or  "internet" 

Everyone  is  familiar  with  telephones.  Phone  sets  inside  the  house  connect  to  outside  lines  that  lead  into  nearby 
local  or  regional  telephone  exchanges.  These  exchanges  arc  connected  to  make  up  one  or  more  national 
telephone  systems.  The  national  telephone  systems  communicate  with  each  other  to  make  up  an  international 
telephone  network.  There  are  also  private  telephone  systems  that  have  their  own  equipment  and  are  totally 
separate  from  the  public  telephone  system. 

Computer  networks  follow  a  similar  pattern.  Local  area  networks  (called  LANs)  may  connect  computers  within 
a  building  or  in  different  buildings.  A  LAN  may  remain  separate,  or  it  may  interconnect  to  regional,  national,  or 
worldwide  commercial  or  government  networks.  Many  of  these  large  and  small  networks  arc  gradually 
interconnecting  through  gateways  to  form  a  worldwide  system  of  data  networks  similar  to  the  telephone  system. 
Indeed,  since  many  computer  networks  use  telephone  communication  lines  to  carry  data  from  one  computer  to 
the  next,  the  two  systems  are  closely  interwoven. 

You  do  not  need  detailed  knowledge  of  this  technology  to  use  a  network,  but  you  do  need  to  understand  the 
concept  of  going  through  layers  of  equipment  and  interconnections.  Effective  network  u.sc  also  requires  knowing 
the  online  addresses  of  people  or  machines  with  v/hich  you  wish  to  communicate  and  knowing  your  own 
network  address  as  well. 

The  DDN  is  a  special  kind  of  data  network  known  as  a  packet-switched  network.  On  this  network,  a  terminal  or 
a  source  host  computer  (generally  just  called  a  host)  passes  a  mcs.sagc  along  with  ius  destination  address  to  the 
local  Packet  Switching  Node  (PSN)^  computer.  The  PSN  breaks  the  message  into  packets,  or  smaller  chunk.s  of 
data.  Each  of  these  packets  has  the  same  destination  address  and  source  address  as  the  original  message,  plus  a 
sequence  number  indicating  which  piece  of  the  original  message  it  represents.  The  packets  are  pa.ssed  from  PSN 
to  PSN  until  they  reach  the  destination  PSN,  where  they  arc  reassembled  in  their  original  order  and  delivered  to 
the  destination  host 

A  packet  sv'itched  network  differs  from  a  circuit-switched  network  in  that  no  predetermined  dedicated  path  exists 
for  delivery  of  the  data.  Each  packet  takes  the  best  route  that  it  can  find  at  the  time,  and  all  the  packets  in  a 


TSNs  were  originally  known  as  Interface  Message  Processors,  or  IMPs. 
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message  do  not  necessarily  take  the  same  route.  Once  the  packets  arrive  at  the  dcstinauon  PSN,  they  are 
reassembled  in  the  correct  sequence  and  delivered  to  the  destination  host  as  a  complete  message. 

2.2  Network  Access  Methods 

The  Defense  Data  Network  (DDN)  is  made  up  of  a  variety  of  equipment  Its  users  provide  terminals,  modems, 
leased  circuits  to  the  PSN,  and  host  computers.  The  DDN  supplies  node  computers,  encryption  equipment,  and 
some  support  services.  You  can  reach  the  network  from  your  terminal  in  several  ways  by  using  different 
combinations  of  hardware  in  conjunction  with  different  network  programs.  These  network  connection  methods 
are  shown  in  Figure  2-1. 


Figure  2-1.  Methods  of  Accessing  the  Network 
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A  terminal  may  reach  a  host  in  several  ways. 

•  A  wire  or  cable  may  run  directly  from  the  tcnninal  to  the  computer;  this  is  called  a  hard-wired 
terminal. 

•  A  terminal  may  communicate  with  a  computer  via  a  telephone  connected  to  the  terminal  through  a 
modem  or  acoustic  coupler,  this  is  called  a  dial-up  terminal. 

Dial-up  terminals  can  connect  to  the  network  at  speeds  of  from  300  to  9600  bits  per  second  (bps).  A  speed  of 
1200  bps  is  common  in  the  continental  United  States,  while  1200  bps  is  more  common  in  Europe. 

[NOTE:  The  speed  setting  of  both  your  terminal  and  your  modem  must  be  the  same  to  enable 
the  two  devices  to  communicate  properly  with  one  another.) 

With  the  appropriate  equipment,  personal  computers  may  also  be  used  as  terminals.  In  this  case,  the  personal 
computer  emulates  (or  acts  like)  a  terminal  when  it  is  used  in  terminal  mode. 

A  terminal  may  be  directly  attached  to  a  local  area  network  (LAN)  or  to  a  local  switch  (similar  to  a  telephone 
switch).  The  user  of  such  a  terminal  can  reach  any  computer  on  the  LAN  or  any  computer  connected  to  the 
switch.  The  LAN  may  also  be  connected  to  the  DDN  through  a  gateway,  which  is  a  computer  whose  software 
can  direct  traffic  from  the  LAN  onto  the  larger  long-haul  network  and  vice  versa. 


2.3  Organization  of  the  DDN 

The  Defense  Data  Network  is  a  large  military  common-user  data  communications  internetwork  operated  for  the 
Department  of  Defense  (DoD)  by  the  Defense  Network  Systems  Organization  (DNSO)  of  the  Defense 
Information  Systems  Agency  (DISA).^  The  DDN  is  made  up  of  several  networks.  The  MILNET  is  the  DDN 
network  that  is  connected  to  the  Internet. 


2.4  Development  of  the  DDN 

As  mentioned  previously,  the  MILNET  is  an  unclassified  military  network  fiat  is  part  of  the  DDN.  It  was  built 
using  technology  developed  as  part  of  the  ARPANET,  which  was  the  prototype  packet-switched  network. 

The  ARPANET  was  built  by  the  Defense  Advanced  Research  Projecu  Agency  (DARPA)  in  1969  as  an 
experiment  to  determine  the  viability  of  a  store-and- forward,  host-io-host,  packet-switched  network.  The  network 
designers  wanted  to  demonstrate  that  computers  made  by  different  manufacturers,  of  different  sizes,  and  running 
different  operating  systems,  could  communicate  with  chic  another  across  a  network.  It  was  envisioned  that  u.sers 
of  such  a  network  could  share  programs  and  communicate  via  the  networic  with  other  users  at  distant  locations. 
The  experiment  was  successful,  and  today  many  data  nctwoiks  are  modeled  after  the  ARPANET. 

In  1979,  the  Department  of  Defense  decided  to  interconnect  several  DoD  long-haul  computer  networks  through  a 
set  of  internet  iwotocols  so  that  these  networks  could  share  the  same  backbone  of  node  computers  linked  by  high¬ 
speed  telephone  lines.  Protocols  are  rules  or  standards  by  which  computers  communicate  on  a  network.  The 
ARPANET  protocols  were  developed  by  researchers  known  as  the  Internet  Working  Group  (IWG),  under  the 
sponsorship  of  the  DARPA  Information  Processing  Techniques  Office  (IPTO).  The  protocols  were  tested  for 


’Formerly,  the  Defense  Communications  System  Organization  (DCSO)  and  the  Defense  Communications 
Agency  (DCA),  respectively. 
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several  years  on  the  ARPANET,  and  they  proved  useful  for  creating  the  networking  environnieni  that  the  tXiD 
wanted. 

In  1982,  the  DoD  issued  a  directive  {3J  adopting  a  single  set  of  communications  proUKols  based  on  tlic 
ARPANET  protocols.  This  was  followed  later  in  1982  by  a  directive  14)  to  create  the  DDN  as  a  parent,  or 
umbrella,  operational  military  network  made  up  of  several  existing  or  planned  DoD  computer  networks. 

By  1983,  the  ARPANET,  which  was  still  considered  an  experimental  network,  liad  grown  to  over  3(X)  compuiers. 
many  used  for  day-to-day  operational  military  purposes  as  well  as  for  research.  Other  military  users  were 
seeking  networking  services.  To  meet  this  growing  need  for  an  operational  military  network,  the  DoD  evaluated 
several  network  architectures  and  finally  chose  the  DARPA  Internet  architecture  as  the  model  fw  as  common- 
user  communications  network,  the  DDN. 

In  September  1984,  the  original  ARPANET  was  split  into  two  separate  uncla.ssificd  networks — a  military 
research  and  development  network  (ARPANET)  and  a  military  operational  communications  network  (MILNF.T). 
The  split  returned  to  DARPA  a  network  for  experimentation  and  established  an  unclassified  military  network 
able  to  accommodate  the  DoD’s  growing  operational  needs. 

In  June  1990,  the  ARPANET  was  officially  dissolved.  Many  sites  that  were  formerly  pan  of  the  ARPANET  are 
now  connected  to  the  National  Science  Foundation  Network,  NSFnct.  The  MILNET  remains  under  the 
administration  of  DISA.  Plans  for  upgrading  and  expanding  the  current  network  arc  now  underway.  A  Defense 
Research  Internet  (DRI)  will  meet  defcn.se  needs,  while  the  National  Research  and  Education  Network  (NREN) 
will  provide  a  national  forum  for  research  and  education. 


2.5  The  Defense  Information  Systems  Agency,  Defense  Network  Systems  Organization 
(DISA  DNSO) 

DISA’s  Defense  Network  Systems  Organization  (DNSO)  evolved  from  the  Defense  Communications  System 
Organization  in  1991  (the  same  year  in  which  DISA  evolved  from  the  Defense  Communications  Agency).  The 
DNSO  handles  overall  management  and  operations.  It  also  sets  policy  guidelines  and  assists  new  military 
subscribers  in  bringing  their  computers  and  related  equipment  onto  the  DDN. 

The  DNSO  provides  many  services  to  network  users  and  potential  network  subscribers.  It  is  responsible  for 

•  Keeping  the  network  "up  and  running,” 

•  Providing  user  assistance, 

•  Setting  policies  and  guidelines, 

•  Anticipating  growth  and  expansion, 

•  Assisting  new  subscribers. 

Among  its  other  duties,  the  DNSO  also 

•  Manages  access  control  and  security  for  the  network  backbone, 

•  Designates  host  and  node  contacts, 

•  Coordinates  military  sponsors, 

•  Provides  technical  management  of  contracts  for  services,  equipment,  and  software  obtained  from 
outside  vendors. 

To  provide  operational  management  support  for  the  DDN,  the  DISA  DNSO  has  designated  a  person  to  act  as  the 
primary  Point  of  Contact  (POC)  for  operations  for  each  of  the  DDN  networks.  For  example,  the  MILNET 
Manager  is  responsible  for  MILNET  operations.  One  of  his/her  duties  is  to  approve  all  host  connections  to  the 
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MILNET  and  all  changes  to  such  conncciions.  For  information  about  how  to  comaci  die  currem  M!1,NE  I 
Manager  or  any  of  the  other  DDN  network  managers,  you  may  call  the  DDN  Network  Information  Center  (See 
Section  6.1.1.) 
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SECTION  3.  NETWORK  CONNECTION 


3.1  Host  Access 

To  open  a  connection  through  the  network  from  one  host  to  another,  you  must  first  log  in  U)  one  of  the  hosts 
from  a  terminal.  After  logging  in,  you  may  open  a  connection  across  the  network  to  a  second  host.  Once  this 
connection  is  established,  you  may  log  in  to  the  remote  host  computer  and  work  there.  When  you  finish  and  log 
out  of  the  remote  computer,  the  network  connection  is  closed  and  you  arc  back  where  you  began — still  logged  in 
to  the  first  host  In  this  way,  it  is  easy  to  use  the  resources  of  more  than  one  computer  {assuming  that  you  have 
a  valid  account  on  e«:h  system). 

The  direct  host-to-host  connection  just  described  is  called  a  TELNET  connection.  TELNET  is  a  valuable 
network  tool  because  it  lets  you  use  programs  and  utilities  on  remote  mtKhincs  that  may  not  be  available  locally. 
You  may  also  open  a  specialized  host-to-host  link  called  a  file  transfer  or  FTP  connection.  (FTP  is  the  acronym 
for  File  Transfer  Protocol.)  FTP  allows  you  to  copy  or  transfer  files  from  one  host  to  another.  Sections  5.1.2 
and  5.1.3  provide  specific  details  for  executing  host-to-host  FTP  and  TELNET  connections. 

3.2  TAC  Access 

Military  users  can  access  the  DDN  by  connecting  to  a  Terminal  Access  Controller,  or  TAC,  and  then  logging 
into  the  TAC  by  entering  a  valid  Userid  and  Access  Code  (password).  A  TAC  allows  a  wide  variety  of 
terminals  to  communicate  direedy  with  any  host  on  the  network  without  going  through  an  intervening  host. 

There  arc  three  types  of  TAC-to-terminal  connection: 

1.  When  a  wire  or  cable  runs  directly  from  a  terminal  to  a  TAC,  it  is  called  a  hard-wired  or  dircct-connccl 
terminal. 

2.  A  terminal  may  also  connect  to  a  TAC  through  a  telephone  and  modem;  this  is  called  a  dial-up 
connection. 

3.  Some  terminals  are  referred  to  as  dedicated  terminals.  These  terminals  use  a  point-to-point  modem  to 
connect  to  the  network;  they  are  not  considered  "dial-up"  terminals. 

After  logging  into  a  TAC,  you  can  reach  a  network  host  by  specifying  iLs  host  address.  You  may  also  establish 
this  type  of  connection  on  a  Mini-TAC  (see  Section  4.2.6). 

(NOTE:  You  must  be  a  registered,  authorized  user  to  obtain  a  TAC  U.scrid  and  Access  Code. 

See  details  in  Section  4.1.1.) 


3.3  Gateway  Access 

If  a  computer  is  attached  to  a  LAN  or  a  non-DDN  network,  a  gateway  or  concenuator  manages  communication 
between  the  local  network  and  the  DDN,  The  gateway  is  transparent — that  is,  you  should  be  unaware  that  it  is 
there.  Some  sites  do  not  allow  traffic  to  flow  from  the  DDN  to  thetr  internal  network.  In  such  cases,  the 
gateway  exists  and  is  functional,  but  you  must  use  the  gateway  ho.st  itself  to  perform  any  tasks  that  require 
access  to  the  DDN  (e.g.,  to  establish  a  TELNET  or  FTP  connection  to  a  DDN  host).  Electronic  mail  can  travel 
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over  this  type  of  gateway  transparently.  Ordinarily,  you  need  no  special  commands  or  syntax  to  communicate 
through  a  gateway.  Figure  2-1  illustrates  a  gateway  connection  from  a  LAN  to  die  DON,  a.s  well  as  the  other 
connection  strategies  discussed  in  this  Section. 

[NOTE:  Because  of  software  limitations,  figures  are  not  visible  in  die  ASCII  farmat  of  the 
online  version  of  this  document  1 


3.4  A  Word  About  Personal  Computers 

Although  Personal  Computers  (PCs)  can  be  attached  to  the  DON  in  several  ways  (including  as  hosts),  at  present, 
most  personal  computers  on  the  DON  arc  not  hosts— that  is,  they  have  not  implemented  the  network  proitKols 
and  are  not  attached  dirccUy  to  a  PSN.  Functioning  simply  as  terminals,  they  have  no  other  capabilities  so  far  as 
the  network  is  concerned. 

Like  a  terminal,  a  PC  can  be  connected  to  a  host.  Terminal  Access  Controller  (TAC),  or  .Mini-TAC  through 
either  a  dedicated  or  a  dial-up  line.  In  these  ca.scs,  the  PC  needs  special  .software  that  allows  it  to  imitate  a 
terminal. 

Once  you  have  assembled  the  proper  equipment,  you  must  configure  the  .software  for  your  particular  sy.stcm. 

You  will  often  need  to  set  the  following  parameters: 

speed  The  baud  rate  (in  bits  per  second)  at  which  data  is  .sent  and  received;  usually  1200 

baud  if  your  connection  is  through  a  dial-up  modem.  However,  9600  baud  dial-up 
service  is  currently  being  introduced.  For  direct  lines,  check  with  your  Node  Site 
Coordinator. 

data  bits  Usually  set  at  8  (or  7  when  accessing  the  network  via  a  TAC) 

stop  bits  Usually  set  at  1 

parity  Usually  set  to  "even"  or  "none" 

If  these  settings  do  not  work,  ask  local  user  representatives  or  host  personnel  what  your  system  requires. 

Consult  the  documentation  that  accompanies  your  personal  computer,  software,  and/or  modem  for  details  of 
operation. 

Local  site  representatives  should  be  the  first  point  of  contact  for  PC-related  problems.  If  you  have  no  such 
representative,  contact  the  Host  Administrator  for  the  host  you  are  trying  to  reach.  The  NIC  may  aLso  be  able  to 
help  with  some  of  the  problems  you  encounter.  Check  to  see  if  your  organization  has  a  PC  users  group,  as  other 
users  can  be  a  valuable  source  of  advice.  In  addition,  the  network  has  several  general  and  machinc-spv?cific  PC 
interest  groups  that  can  provide  a  broad  range  of  information  and  answers.  (Sec  Appendix  A  for  information  on 
these  groups,  and  sec  Section  4.2.5  for  a  di.scussion  of  transferring  files  through  a  TAC  or  Mini-TAC  to  a  PC.) 
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SECTION  4.  DDN  TAC  ACCESS 


This  section  provides  information  about  TAC  cards  and  explains  how  to  use  a  TAC  or  Mini-TAC  to  log  on  to 
the  network  and  set  it  to  transfer  files.  It  also  provides  information  on  special  settings  that  may  be  required  to 
allow  the  TAC/Mini-TAC  to  transfer  files  and  function  more  efficiently. 


4.1  TAC  Card  Information 

The  following  paragraphs  explain  how  users  are  registered  to  receive  TAC  cards,  what  items  are  primed  on  a 
TAC  card,  and  how  to  get  a  TAC  Users'  Guide. 


4.1.1  TAC  User  Registration 

If  you  are  unable  to  connect  directly  to  your  host  computer,  you  will  be  issued  a  TAC  Access  Card  that  allow  s 
you  to  access  your  host  via  a  TAC  or  Mini-TAC.  Whether  you  are  located  hundreds  or  thousands  of  miles  away 
from  the  host  or  right  next  door,  you  wilt  need  a  TAC  card  only  if  you  cannot  access  your  host  directly. 

TAC  access  requires  official  authorization  from  a  MILNET  Host  Administrator,  as  well  as  the  assignment  of  a 
unique  TAC  Userid  and  Access  Code  (Password), 

After  obtaining  official  authorization,  the  NIC  issues  each  MILNET  TAC  user  a  TAC  Access  Card  containing  a 
Userid  and  Access  Code.  The  NIC  cannot  issue  a  card  until  it  has  received  approval  from  the  Host 
Administrator  for  the  user’s  primary  MILNET  host  (or  from  the  Host  Administrator  of  the  gateway  to  which  his 
primary  host  is  attached). 

[NOTE:  If  you  need  a  TAC  card  for  a  limited  time,  your  Host  Administrator  can  probably 
issue  you  a  TAC  guest  card,  which  is  good  for  up  to  three  months.  If  you  need  such 
tempcaary  access,  contact  your  Host  Administrator.] 

Regardless  of  whether  you  normally  use  a  direct  connection  to  your  host,  you  may  need  a  TAC  Access  Card  if 
you  travel  extensively.  Because  TACs  and  Mini-TACs  arc  located  ail  over  the  world,  an  Access  Card  allows 
you  to  log  in  when  you  are  out  of  town  without  incurring  long  distance  phone  charges. 

The  TAC  Access  Card  contains  a  Userid  and  Access  Code.  This  Userid  and  Access  Code  arc  to  be  used  only  by 
the  person  to  whom  the  card  is  issued.  While  there  is  a  strict  policy  of  limiting  TAC  cards  to  one  per  person, 
you  may  have  many  DDN  host  'ogin  accounts,  and  one  TAC  card  can  be  used  to  access  any  of  these  accounts. 
You  do  not  need  a  TAC  card  from  each  host  on  which  you  have  an  account.  Any  TAC  card  works  on  all 
TACs. 

Note  that  TAC  cards  arc  issued  to  users  by  individual  name  only.  They  arc  not  issued  to  groups  of  users  or 
entire  offices.  This  policy  applies  even  when  many  users  share  a  single  login  account.  Not  only  is  this  a 
security  measure,  but  it  also  prevents  multiple  users  from  losing  DDN  accc.ss  when  a  single  card  is  invalidated. 

If  you  are  using  a  card  issued  to  another  DDN  user,  please  notify  the  person  listed  as  the  CONTACT  on  the 
card.  This  is  probably  your  Host  Administrator.  Inform  him/her  that  you  arc  using  an  account  on  his/her  host 
and  that  you  wish  to  have  a  TAC  card  issued  in  your  own  name. 
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4.1.1.1  Users  Behind  Concentrators 

DDN  Management  Bulletin  76  [5]  states  that  only  administrators  of  hosts  that  are  directly  connected  to  the 
MILNET  can  authorize  TAC  or  Mini-TAC  Access  Cards  for  their  users.  Administrators  of  hosts  that  are  behind 
concentrators  or  gateways  cannot  directly  authorize  their  users  for  TAC  access  unless  they  are  delegated  that 
authority  by  their  gateway  Host  Administrator.  Such  administrators  will  need  either  to  transfer  jun.sdiclion  over 
their  users  to  their  gateway  administrator  or  to  obtain  authority  from  him^er  to  request  TAC  access  directly.  If 
you  are  a  user  ot  Host  Administrator  who  has  questions  about  this  policy,  please  send  a  message  to 

REGISTRAR@NIC.DDN.MIL 


or  call  1-800-365-DNlC  for  assistance. 

If  you  access  the  MD-NET  via  a  concentrator/gateway,  the  name  of  that  concentrator,  its  address,  and  its 
administrator  may  appear  on  the  HOST,  NETADDRESS,  and  CONTACT  lines  of  your  TAC  card.  You  may 
still  use  your  card  to  access  your  primary  login  account,  even  if  it  is  on  another  host;  however,  you  must  know 
the  network  address  of  your  primary  host  The  administrator  of  your  primary  host  can  tell  you  its  address.  You 
must  know  this  address  when  you  log  into  a  TAC  and  when  you  request  help  with  a  TAC  login  problem. 


4.1.2  TAC  Card  Example 

Figure  4- 1  is  a  sample  of  the  left  portion  of  a  DDN  TAC  Access  Card.  To  help  you  understand  the  information 
on  the  TAC  card,  we  have  identified  what  each  information  item  represents. 


MILNET 

TAC  ACCESS  CARO 


USER  ID  J042-GHAB 


ACCESS  CODE  33A8DC)OXJ  ■ 


NAME  Doe.  John. 


ISSUE  DATE  21-AU9-91 
EXPIRES  22-Aug-92<4 
CARD  NO.  6611882 


FOLD  HERE 

HOST  GENERIC  HOST.NAVY.MIL  - 
NETADDRESS  26  31  0  73 
CONTACT  Smith,  Jack  «  ... 

NET  MAILBOX 

JSMITH@GENEBIC-HOSTNAVY  MIL 


PHONE  (703)  802-8400 
LOGIN  NAME  JOOE2 


MAILBOX  JOOE2(giGENERIC-HOST.NAVY  MIL 

A  TAC  U$*r  Guda  a  availAbi*  aa  OCAC  31  OP7a-74 
RtprftMotiitiv*  TAC  phont  numt«f«  art  listed  on  iha  back  of  th«  cArd 
for  funhar  irrformation  contact  th«  Natwork  kiformation  Caniar 
Phono  (800)  365-3642 


*Us«r'8  Uniquo  kJontificalion 


‘  (Mo  Asaoaalod  with  Uaamame 


>  \Jsof%  Full  Nam* 


•  Dat6  Card  was  Pnrtod 

■  Data  Usar  muat  ba  RaaUhonzad  on 
th«  Hoat 

r  lumbar  Idanllfying  ihia  Accaas  Card 

Otficiai  Nama  ol  Host 
*on  which  this  Ca/d  «  asuad. 

,  Nalwork  Addrass  for  Hoat 
Cemputar 

Nama  of  Host  Admin«tra!or 
tor  this  User's  Hoat 
Host  Administrator's  Etactromc 
—"Mailbo* 

Administrator's  Company  and/or  DSN 
Phona  Number 

*  User's  Logm  Name  for  Mail 

User's  Becirontc  Mati 


Addrass 


•^upptamaniary  Info 


Figure  4-1,  TAC  Card  Example 
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TAC  cards  are  perforaieo  and  include  instructions  to  "detach  here"  and  "fold  here, '  allowing  you  to  reduce  the 
size  of  I’le  card  so  that  you  may  insert  it  in  a  wallet  or  credit  card  case. 

WARNING!!  Do  not  laminate  your  TAC  Card.  Because  of  NIC  printing  requirements,  blank 
cards  are  enclosed  within  carbon-coated  envelopes.  This  carbon  material  fades  very  quickly 
when  placed  in  plastic  envelopes  or  when  permanently  laminated.  This  phenomenon  also 
extends  to  the  placement  of  transparent  tape  over  the  print.  If  you  wish  to  preserve  or  darken 
the  information  printed  on  your  card,  we  recommend  that  you  use  a  ballpoint  pen  to  rewrite  it 
just  above  or  below  the  appropriate  item. 

The  most  important  information  on  the  right-hand  portion  of  your  TAC  card  is  your  mailing  address.  However, 
the  NIC  includes  its  toll-free  User  Assistance  Hotline  number  on  this  section  of  the  card  in  case  you  lose  the  left 
half.  In  addition  to  the  hotline  number,  the  top  of  the  card  contains  a  brief  set  of  user  guidelines.  As  an 
authorized  TAC  or  Mini-TAC  user,  you  are  expected  to  comply  with  these  guidelines.  If  you  find  yourself  in 
the  position  of  sharing  a  TAC  Access  Card  with  other  users,  please  notify  your  Host  Adminisu-ator  and  request  a 
TAC  card  for  each  individual. 


4.1.2.1  Common  TAC  Card  Uscrid/Access-Code  Input  Errors 

Just  below  the  guidelines  section  is  a  key  that  shows  how  each  printed  character  appears  on  a  TAC  card.  The 
statement,  "Access  codes  never  contain  a  one,  zero,  ’Q’  or  ’Z”'  follows.  Remember  that  these  characters  arc 
invalid  only  in  Access  Codes  and  not  in  Userids.  If  you  find  that  the  TAC  or  Mini-TAC  is  returning  a  "Bad 
Login"  error  message  during  your  first  attempts  to  log  in,  check  to  see  if  you  arc  typing  one  of  these  invalid 
characters.  For  example,  if  you’re  typing  a  zero,  try  the  letter  O  (oscar).  If  you’re  typing  a  Q  (qucbcc),  try  the 
letter  G  (golf)  instead.  Use  the  key  to  compare  the  printed  characters.  Be  aware  that  other  character  can  also  be 
similar.  For  instance,  the  8  (eight)  sometimes  looks  like  a  B  (bravo),  and  the  S  (sierra)  sometimes  looks  like  a  5 
(five).  TAC  card  Userids  and  Access  Codes  are  not  case-sensitive,  i.c.,  you  can  enter  them  in  either  uppercase 
or  lowercase  leuers. 

If  you  have  any  questions  about  reading  or  using  your  TAC  access  card,  call  the  NIC  for  assistance  at 
1-800-365-DNIC. 


4.U  Obtaining  the  TAC  Users’  Guide 

The  paragraph  in  fine  print  at  the  bottom  of  your  TAC  card  alerts  you  that  further,  more  comprehensive 
infwmation  is  available  to  you.  Upon  written  request,  you  can  obtain  the  TAC  Users’  Guide  from  the  Defense 
Information  Systems  Agency  (DISA).  This  document  is  geared  toward  users  who  are  interested  in  learning  some 
of  the  finer  points  of  TAC  usage. 

To  order  the  TAC  Users'  Guide,  .send  a  note  specifying  its  title  and  DCAC  310-P70-74  to  the  following  address: 

Defense  Information  Systems  Agency 
Attn:  CodeBIAR 
701  S.  Courthouse  Road 
Arlington,  VA  22204-2199 
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4.2  TAC  Login  Procedures 

This  section  discusses  how  to  use  a  TAC  or  Mini-TAC  to  log  in  to  the  DDN.  It  also  describes  how  to  connect 
to  a  TAC  or  Mini-TAC,  lists  some  common  TAC/Mini-TAC  error  messages,  and  presents  infonmaiion  about 
transferring  files  through  a  TAC  to  a  F<T. 


4,2.1  Connecting  to  a  TAC  or  Mini-TAC 

The  following  paragraphs  explain  the  various  ways  in  which  you  can  connect  U)  a  TAC  or  a  Mini-TAC, 


4.2.1.1  Dial-up  TACs 

To  connect  to  a  TAC/Mini-TAC  using  the  telephone  system,  follow  the  general  procedures  dc.scribcd  here. 
Because  the  exact  steps  required  to  dial  the  TAC/Mini-TAC  depend  on  your  local  hardware  setup,  check  with 
local  site  representatives  for  details. 

You  may  obtain  the  number  of  the  nearest  TAC/Mini-TAC  directly  from  the  network  by  using  the  TACNEWS 
service  (see  Section  6.3.3)  or  by  calling  the  NIC  at  1-800- 365-DNlC.  You  can  look  up  the  phone  number  of  a 
specific  TAC/Mini-TAC  via  the  NIC  WHOIS  service  (see  Section  6.3.1).  In  addition,  many  TAC/Mini-TAC 
phone  numbers  are  listed  on  the  back  of  your  TAC  Access  Card. 


4.2.L2  Using  a  Terminal  with  an  Acoustic  Coupler 

To  use  an  acoustic  coupler,  first  dial  the  TAC/Mini-TAC  number  on  a  telephone  and  listen  for  the  dial  tone. 
When  you  hear  the  tone,  put  the  telephone  handset  into  the  indicated  position  on  the  coupler  cuffs. 


4.2.13  Using  a  Dial-up  Modem 

A  dial-up  modem  will  be  wired  to  your  telephone  and  to  your  terminal.  (Consult  the  instructions  that  come  with 
the  modem  to  attach  it  to  your  terminal  and  set  it  properly.)  Begin  by  dialling  the  I'AC/Mini-TAC  number  on 
the  telephone.  Then,  wait  for  the  tone,  switch  the  modem  from  "voice"  to  "data,"  and  set  the  handset  back  on 
the  telephone  cradle.  Note  that  the  speed  of  the  terminal  must  match  the  speed  of  the  modem.  Also  note  that 
some  modems  are  "smart"— that  is,  you  will  not  have  to  use  the  telephone  to  dial  the  number.  Instead,  you  will 
type  some  instructions  to  your  terminal,  such  as  "DIAL5551212"  or  "ATDT9, 18003682227."  The  modem  will 
then  dial  the  number  as  instructed  and  make  the  connection  for  you.  See  your  modem  instruction  manual  for 
exact  details. 


4.2.1.4  Using  a  PC  and  Communications  Software 

To  access  a  TAC/Mini-TAC,  you  can  u.se  one  of  the  popular  communications  software  packages  such  as 
Procomm®  or  the  Xmodem  protocol.  These  programs  often  enable  the  PC  to  dial  the  TAC/Mini-TAC,  open  the 
host  connection,  and  enter  your  Userid  and  Acce.ss  Code  automatically.  If  you  use  such  a  package,  be  sure  you 
know  how  to  dial  the  TAC/Mini-TAC  by  hand  in  case  there  are  problems  with  the  script  or  the  equipment.  It  is 
also  useful  to  know  the  address  of  the  host  you  connect  to  and  how  to  alter  the  script  when  changes  are  made  to 
the  network.  Finally,  for  security  reasons,  you  should  enter  your  Userid  and  Access  Code  manually  when 
logging  in  rather  than  including  this  information  within  the  access  script. 
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4.2.1.5  Hard-Wired  TAC  Connections 

If  you  are  to  connect  to  a  host  via  a  hard-wired  TAC  connection,  you  will  need  to  consult  a  kxal  user 
representative  or  Node  Site  Coordinator  to  learn  the  procedure  for  gening  to  the  TAC/Mini-TAC.  The  procedure 
will  vary  depending  upon  what  equipment  is  used  and  how  it  is  configured  at  your  Uxation. 

4.2.2  TAC  Login 

After  you  have  successfully  connected  to  a  TAC/Mini-TAC,  you  must  supply  a  "wake-up"  character  to  alert  the 
TAC  to  your  presence.  Do  this  by  holding  down  the  <Control>  key  and  typing  the  letter  Q  on  your  keybrtard 
(''Q).  The  TAC/Mini-TAC  should  respond  with  a  banner — often  a  message  from  the  MILNET  Monitoring 
Center.  If  you  are  dialing  into  a  TAC  modem  capable  of  9600  bps,  enter  a  <Rctum>  character  instead  of  a  ■'Q. 
If  you  are  unsure  of  the  modem  type  at  the  TAC,  try  both  characters. 

Once  the  TAC  banner  is  displayed  on  your  screen,  you  can  begin  the  process  of  logging  into  the  TAC/Mini-TAC 
and  connecting  to  a  remote  host. 


Following  is  a  sample  scenario  showing  how  to  log  in  to  a  TAC/Mini-TAC. 


CONNECT  1200 

After  user  dials  or  otherwise  connects  to  the  TACiMini- 
TAC,  the  modem  may  print  a  message  similar  to  this. 

To  alert  the  TAC/Mini-TAC,  the  user  types  a  control-q. 

(It  will  not  appear  on  the  screen.) 

FOR  OFFICIAL  U3E  ONLY 

NIC  i-800>-365-DNIC 

29  TAC  114  #;20 
@6  192.112.37,10 

The  TAC  responds;  the  user  opens  a  host  connection  by 
typing  "@o"  for  open  and  entering  the  host  address  in 
dot  notation  format. 

TAC  Userid:  NIC-GUEST 

Access  Code: 

The  T.A.C  prompts  for  Userid  and  Access  Code,  and  the 
user  enters  the  data.  The  Access  Code  does  not  echo. 

Login  OK 

TCP  Trying.. .Open 
*  ——DDN  Network  Information 

The  connection  is  opened  and  NIC  displays  information. 

Center  ~ 

*  For  T AC  news,  type:  TACNEWS  <return> 

*  For  user  and  host  information,  type:  WHOIS  <return> 

*  For  NIC  information,  type:  NIC  <return> 

*  For  user  assistance,  call  (800)  365-3642  or  (800)  365-DNIC  or 

(703)  802-4535 

*  Please  report  system  problems  to  ACTI0N@NIC.DDN.MIL. 

NIC,  SunOS  Release  4.1.1  (NIC)  #1: 

Cmdihter  Ver  1.2  Wed  Apr  8  11:18:20  1992  EST 

0.  .  . 

User  works  on  the  host  and  logs  off  when  finished. 

When  disconnected  from  the  host,  user  returns  to  the  TAC  command  level. 

ei 

Logged  out 

User  types  "@T'  to  log  off  the  TAC/Mini-TAC  and  the 

TAC  confirms. 

17 


DON  TAC  ACCESS 


NIC  (KKWt.  F  ebruary  !W3 


For  more  deUiilcd  insiruciions  on  using  a  TAC/Mini-TAC  and  setung  icrnnnal  paraincu-TS,  consuk  the  TAC 
Users'  Guide  [11. 

When  you  enter  your  TAC  Userid  and  Access  Ctnle.  rcmeinhcr  die  CoHowing: 

•  <Reium>  lerminaics  each  input  line  and  causes  die  ne.xt  prompt  to  apjiear. 

•  It  doesn’t  matter  whether  you  iy(x;  your  TAC  Userid  and  Access  C'kIc  m  upjx.'rca.sc  or  lowercase 
letters. 


•  For  security  reasons,  your  Access  Ctxle  input  is  not  echoed  or  it  is  obscured  Irom  view  with 
strikeover  characters. 


•  If  you  make  a  mistake,  try  using  the  backspace  key  (''H)  U)  delete  a  single  character.  Use  ''U  to 
delete  an  entire  line.  Although  these  commands  do  not  work  on  every  keyboard,  they  often  do. 

•  If  you  make  a  mistake  while  entering  cither  your  TAC  Userid  or  Acccs.t  Ctxle,  typ*:  XT  to  abort  the 
login  process  and  return  to  the  TAC  command  mode.  Then  try  again. 

•  Sometimes  the  TAC/Mim-I'AC  is  unable  to  reach  the  requested  host  address.  To  tell  the 
TAC/Mini-TAC  to  stop  making  connection  attempts,  iss'  ^  a  ^ii'S--  conanand: 


@c  <Retum> 

Closed . 


•  As  long  as  you  have  an  open  connection  to  a  ho.st.  you  remain  logged  in  to  the  TAC/Mini-TAC.  If 
you  close  the  connection  to  the  host  or  the  connccuon  is  shut  down  for  any  reason,  you  arc  given 
ten  minutes  to  open  another  connection  with  no  further  login  to  the  TAC/Mini-TAC.  If  you  do  not 
open  another  connection  within  ten  minutes,  the  TAC  attempts  to  hang  up  your  connection  and 
automatically  log  you  out.  To  open  another  connection,  simply  type  the  "open"  command  again  and 
supply  another  host  ac  !rcss,  as  in  the  example  below; 


@o  128.1.0.1  <Retum> 


4.2.3  Common  TAC  Login  Problems 

This  section  covers  only  TAC  login  problems.  Problems  specific  to  the  Mini-TAC  will  be  covered  in  a  future 
revision  of  this  document. 

The  TAC  issues  an  error  message  when  it  docs  not  receive  the  c.xpccicd  input.  Some  of  the  most  common  error 
messages  are  presented  in  this  section,  along  with  suggestions  about  what  to  do  if  you  see  one. 

The  TAC  sends  two  kinds  of  mcs.sagcs.  The  first  deals  with  errors  in  the  TAC  login  process;  the  second  deals 
with  difficulties  in  opening  a  connection  to  the  destination  host. 
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4J,3.1  TAC  Login  Error  Messages 

You  may  sec  one  of  the  following  error  messages  if  you  have  problems  logging  in  lo  a  TAC  Each  message  is 
accompanied  by  a  brief  explanation  of  its  cause  and  suggestions  for  further  action. 

BAD  LOGIN 

This  message  means  that  the  combination  of  Userid  and  Access  Code  you  entered  is  invalid.  Examine 
your  TAC  Access  Card  carefully  to  be  sure  you  arc  typing  the  correct  characters  and  that  you  are  not 
using  any  of  the  characters  that  arc  invalid  in  an  Access  Code  Note  that  Access  Codes  never  contain  a 
zero  (0),  a  one  (1),  a  Q  (qucbcc),  or  a  2  (zulu),  since  each  of  these  characters  may  easily  be  mistaken 
for  another.  If  your  Access  Code  appears  to  contain  one  of  these  characters,  it  may  be  the  letter  O 
(oscar),  the  letter  L  (lima),  the  Icucr  G  (golf),  or  the  number  2  (two). 

This  message  is  also  displayed  if  you  arc  using  an  expired  or  invalid  TAC  card.  If  you  are  sure  you  are 
typing  correctly  and  suspect  you  arc  using  a  bad  card,  contact  the  NIC  at  1-800-365-DNlC,  and  they  can 
determine  the  validity  of  your  card. 


BAD 

This  message  means  you  typed  a  siring  that  is  not  a  valid  TAC  command,  and  the  TAC  docs  not 
understand  your  input  Either  you  typed  something  incorrectly  or  there  was  some  interference  on  your 
connection.  Frequently,  simply  repeating  the  command  corrects  the  problem.  However,  if  repeating 
your  input  causes  another  error  message,  check  to  make  sure  that  you  understand  the  command  you 
meant  to  type  and  that  your  input  is  in  an  acceptable  format. 


NUM 

This  message  means  that  the  TAC  was  expecting  you  to  type  a  number,  but  you  typed  some  other 
character.  The  message  is  displayed  if  you  type  the  letter  O  (oscar)  as  part  of  the  address  of  the  host 
you  arc  trying  to  connect  to,  or  if  you  omit  the  numeric  host  address  after  typing  @o  (for  open).  Make 
sure  that  you  are  not  typing  letters  in  places  you  should  be  typing  numbers;  this  will  probably  correct 
the  problem. 


WAIT 

The  TAC  displays  this  message  while  it  is  attempting  to  validate  your  U.scrid  and  Access  Code. 


NO  CARRIER 

This  message  comes  from  your  PC  or  modem.  If  this  mcs.sagc  is  displayed  on  your  initial  attempt  to 
dial  the  TAC/Mini-TAC,  it  means  that  the  TAC/Mini-TAC  did  not  answer  the  phone.  This  could  be 
because  of  a  power  failure  or  other  emergency  at  the  site  where  the  TAC/Mini-TAC  is  located,  or  it 
could  be  the  result  of  a  mis-dialcd  telephone  number.  Try  calling  the  number  with  a  telephone  that  is 
not  connected  to  your  terminal  and  sec  if  your  get  a  busy  signal  or  other  recording  from  the  telephone 
company. 

If  this  message  appears  after  you  have  logged  in  and  while  you  arc  working  on  the  host,  it  means  that 
something  happened  lo  disconnect  your  modem  from  the  TAC/Mini-TAC.  Try  dialing  the  TAC/Mini- 
TAC  again.  If  the  problem  persists,  contact  your  site  systems  representative  to  check  your  modem,  or 
call  the  Monitoring  Center  for  your  area  lo  check  the  TAC/Mini-TAC. 
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4.2.3.2  Host  Connection  Errors 

Host  connection  error  messages  are  sent  when  you  have  successfully  logged  in  lO  the  TAC  and  while  the  TAC  is 
trying  to  connect  to  the  host  you  specified.  You  know  that  you  have  successfully  logged  in  to  tlic  TAC  when 
you  see  the  "Login  OK,  TCP  trying...”  message. 

DESTINATION  HOST  DEAD 

This  message  neans  that  the  remote  host  is  physically  powered  off  or  the  cable  to  the  network  has  been 
removed.  TTie  host  is  "down."  Since  host  down-times  are  normally  relatively  .short,  wait  a  while  and 
try  to  log  in  again.  If  the  host  remains  unavailable,  call  the  Host  Administrator  for  the  destination  host 
and  ask  when  the  system  will  be  available  again.  If  you  do  not  know  the  Host  Administrator’s  phone 
number,  the  NIC  can  provide  it  or  the  name  and  number  of  the  coordinator  of  the  network  to  which  the 
host  is  attached.  This  information  can  also  be  found  by  querying  the  NIC’s  WHOIS  database. 


DESTINATION  HOST  UNREACHABLE 
DESTINATION  NET  UNREACHABLE 
HOST  NOT  RESPONDING 

Several  network  conditions  can  cause  these  messages.  They  my  be  displayed  if  the  host  or  its  PSN  is 
down  or  if  a  gateway  between  the  TAC  and  the  host  is  down.  Also,  check  to  ensure  that  you  specified 
the  correct  host  address.  Typing  a  nonexistent  network  address  will  cause  such  a  message  to  be 
generated.  If  the  condition  persists,  call  the  NIC  for  assistance. 


4.2.4  Changing  the  TAC  Intercept  Character 

The  sign  is  the  default  TAC  intercept  character.  The  intercept  character  is  the  character  that  signals  the 
TAC  to  interpret  any  character(s)  that  follow  immediately  as  TAC  commands  rather  than  passing  them  through 
to  the  network. 

However,  once  you  have  connected  to  your  host,  you  may  want  to  send  an  @  directly  through  to  the 
network — for  example,  when  you  type  a  DDN  mail  address.  To  make  the  TAC  pass  the  @  on  to  the  host  rather 
than  intercepting  it,  you  must  type  (2)  twice— i.e.,  When  you  do  this,  the  TAC  intercepts  the  first 
transmits  the  second  to  the  host,  and  echoes  that  one  back  to  you.  You  will  see  @(3)<a)  on  your  screen. 
Remember,  when  you  want  to  type  an  for  anything  other  than  a  TAC  command,  you  must  type  it  twice. 

For  example,  to  send  a  message  to  ausehSmilhost,  you  would  have  to  type 


auser@  @nu.lhost 


and  on  your  screen  you  would  see 


auser@  8  Smilhost 


To  change  the  TAC  intercept  character,  you  must  type  @i  {for  intercept)  followed  by  the  decimal  value  of  the 
ASCII  code  of  the  character  you  wish  to  use  in  place  of  the  @.  The  TAC  Users'  Guide  contains  a  list  of  AS(’1I 
codes.  For  purposes  of  text  file  transfers,  we  recommend  that  you  change  the  intercept  to  a  non-printing 
character,  such  as  a  control  character.  For  example,  to  change  the  intercept  character  to  conbol-y  (^'y),  type  the 
following: 
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Si  25  <Return> 


(Be  sure  to  insert  a  space  between  the  @i  and  the  ASCII  code  number.)  After  you  change  the  intercept 
character,  you  must  use  the  new  character  for  all  subsequent  TAC  commands.  To  return  to  the  default  TAC 
intercept  character  (the  sign)  after  changing  it  to  ''y,  type  the  following: 


''yi  e  <Retum> 


where  "i  e"  stands  for  intercept  escape. 

4.2.5  Using  a  TAC  for  File  Transfer 

This  section  presents  several  TAC  command  procedures  that  may  facilitate  file  transfers  through  a  TAC.  The 
procedures  covered  here  are 

•  Changing  the  TAC  intercept  character, 

•  Setting  flow  control  on  the  TAC, 

•  Putting  the  TAC  into  binary  mode. 


4.2.5.1  Changing  the  Intercept  Character 

For  executing  file  transfers,  you  may  want  to  change  the  TAC  intercept  character  to  one  that  your  file  transfer 
program  does  not  use.  For  example,  the  Kermit  file  transfer  program  uses  the  "(a)"  (discussed  in  a  subsequent 
section).  To  change  the  intercept  character,  follow  the  directions  in  Section  4.2.4  above. 


4,2.S2  Setting  Flow  Control  on  the  TAC 

Setting  flow  control  on  the  TAC  ensures  that  data  will  not  be  uansferred  at  a  rate  that  causes  the  TAC  buffers  to 
overflow.  The  example  below  assumes  that  you  have  changed  the  TAC  intercept  character  to  ^y.  (The  ''y 
characters  are  shown  in  the  examples,  but  they  will  not  display  on  your  screen  as  you  type  them  on  your 
keyboard.) 


-yd 

c 

a 

<Return> 

-yf 

1 

s 

<Return> 

-yf 

o 

s 

<Return> 

where 


-yd  c  a  =  device  code  ASCII,  which  clears  any  previously  set  flow  control  as  well 
as  any  padding  and  parity.  Flow  control  is  incompatible  with  padding 
and  parity. 

-yf  i  3  =  flow  control  input  start,  which  enables  fiow  control  so  that  the  terminal 

sending  data  will  not  send  it  faster  than  the  TAC  can  handle  it. 
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''yf  0  3  =  flow  control  output  start,  which  disables  flow  contn)l  from  the  TAC  to 

the  terminal. 


4.2.5J  Putting  the  TAC  in  Binary  Mode 

To  transfer  binary  files  over  the  network,  you  must  first  put  the  TAC  into  binary  mode.  Doing  so  disables  the 
TAC  intercept  character.  You  must  disable  the  intercept  character  because  if  the  TAC  receives  what  it  considers 
to  be  an  intercept  character — even  though  the  character  is  embedded  in  a  file — it  interrupts  the  uansfer  process 
and  tries  to  interpret  whatever  follows  the  intercept  as  a  command. 

To  put  the  TAC  in  binary  mode,  first  open  a  connection  to  your  host.  After  establishing  the  host  connection,  put 
the  TAC  in  binary  mode  with  the  commands  shown  below.  (Here  again,  the  example  assumes  you  have  changed 
the  intercept  character  to  ^'y.)  The  commands  must  be  typed  in  the  order  shown,  because  if  you  start  binary 
input  before  you  initiate  binary  output,  the  TAC  will  ignore  the  "'^yb  o  s  command"  and  treat  it  simply  as  a 
character  string  to  transmit  over  the  network. 


where 


''yb  o  3  <Retum> 
■'yb  i  3  <Return> 


^yb  0  3  =  binary  output  start,  which  enables  8-bit  binary  output  mode  from  the 

TAC. 

''yb  is  =  binary  input  start,  which  enables  8-bil  binary  input  mode  to  the  TAC. 

Logging  out  of  your  host  returns  the  TAC  to  non-binary  mode,  re-enabling  local  conuol  with  @  commands. 
This  is  the  only  way  to  reset  the  TAC  from  binary  to  non-binary  mode  (short  of  hanging  up  or  disconnecting 
from  the  TAC  itselQ- 


4.2.6  A  Brief  Word  About  Mini-TACs 

Mini-TACS  are  new  and  improved  DDN  access  controllers  similar  to  the  TACs  currently  in  use.  As  with  the 
original  TACs,  Mini-TACs  provide  DDN  access  to  network  users  who  are  geographically  distant  from  their  host 
computers.  When  a  user  dials  a  local  or  toll-free  phone  .tumber  and  types  the  required  scries  of  commands,  it 
opens  a  long-distance  connection  to  the  user’s  host  computer. 

TACs  support  up  to  63  asynchronous  user  ports.  The  smaller,  more  compact  Mini-TAC  can  handle  only  16 
asynchronous  terminal  connections,  but  it  has  other  capabilities  (i.c.,  synchronous  terminals,  HFEP,  etc.).  Both 
TACs  and  Mini-TACs  allow  normally  incompatible  terminals  and  hosts  to  communicate  with  one  another  using 
the  DDN  as  the  go-between.  While  both  types  of  access  controllers  serve  similar  roles,  the  Mini-TACs  provide 
more  ^varx:ed  operational  and  security  features. 

Like  a  TAC,  the  Mini-TAC  returns  error  messages  to  its  users  if  it  cannot  understand  a  command.  Currently, 
from  a  user  standpoint,  the  Mini-TACs  and  the  TACs  arc  essentially  the  same.  If  you  notice  any  difference  in 
behavior  between  TACs  and  Mini-TACs  and  you  need  assistance,  call  the  MILNET  Monitoring  Center  or  the 
NIC.  At  present,  some  TAC  commands  can  be  abbreviated  to  one  character.  However,  in  the  future,  Mini-TAC 
commands  may  need  to  be  a  least  two  characters  long  to  ensure  that  they  are  differentiated  from  other 
commands  starting  with  the  same  letters. 
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SECTION  5.  NETWORK  USE 


A  computer  attached  to  the  DDN  can  reach  a  large  community  of  users  and  access  a  wide  variety  of  software. 
Research  tools,  documents,  files,  and  mailing  lists  arc  all  readily  accessible  through  the  DDN.  This  section 
describes  the  procedures  for  using  these  network  tools,  three  of  which  arc  major  network  services:  electronic 
mail,  file  transfer  (FTP),  and  remote  login  (TELNET).  These  services  arc  integral  to  the  DDN  proUKols  and  arc 
offered  by  all  hosts  that  have  implemented  the  full  set  of  network  protocols. 

Although  the  functionality  of  the  services  discussed  here  is  the  same  on  every  host,  what  the  user  secs  may  differ 
from  host  to  host  because  software  is  often  customized  to  suit  the  host  operating  system.  For  this  rca.son,  it  is 
important  to  read  local  online  and  hard-copy  documentation  and  to  consult  online  help  files  for  specific  details 
on  using  these  services  on  your  host.  Check  with  your  local  Host  Administrator  or  site  systems  representative  if 
you  need  more  information.  The  sections  below  provide  generic  instructions  for  using  electronic  mail,  FTP,  and 
TELNET. 


5.1  Electronic  Mail 

The  DDN  capability  that  is  used  more  often  than  any  other  is  electronic  mail.  Elccuonic  mail  lets  users  send 
messages  to  one  another  over  the  network.  System  programs  accept  and  store  mail  messages  from  users  on 
other  hosts  that  are  directed  to  local  users.  These  programs  automatically  recognize  the  incoming  uaffic  as 
electronic  mail,  translate  it  to  a  format  compatible  with  the  receiving  mail  program,  and  direct  the  messages  to 
the  correct  recipients.  Most  users  have  an  online  mail  file  where  all  messages  addressed  to  them  arc  scored. 

You  can  print,  read,  or  delete  your  mail  using  the  local  mail  program.  However,  you  .should  not  edit  or  alter  the 
structure  of  your  mail  file  except  through  a  mail  program,  as  each  message  has  unique  characteristics  that 
identify  it  as  mail,  such  as  a  header,  a  character  count,  and  a  time  stamp.  Editing  the  mail  file  directly  may  alter 
these  characteristics  so  that  the  mail  program  no  longer  recognizes  the  data  as  mail. 

Host  computers  usually  provide  one  or  more  programs  for  reading  and  sending  mail.  Most  mail  programs 
provide  you  with  the  following  capabilities: 

•  Reading  messages 

All  mail  programs  have  a  command  that  allows  you  to  read  messages  received  over  the  network. 
Mail  programs  normally  offer  options  for  selecting  and  displaying  specific  messages  from  those 
received  and  stored  in  your  mailbox. 


•  Printing,  deleting,  or  moving  messages 

With  your  local  mail  program,  you  can  print  your  messages  (if  a  printer  is  available),  move  them 
into  other  (editable)  files,  or  delete  them.  It  is  important  that  you  learn  how  to  delete  or  move 
messages  after  reading  them;  otherwise,  your  mail  file  may  overflow  and  prevent  additional  mail 
from  being  delivered. 
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•  Sending  messages 

You  can  send  messages  to  other  users  on  your  own  host  or  to  anyone  on  the  network  that  has  a 
mail  service.  No  passwords  are  required  to  send  mail,  but  you  must  know  the  network  mailbox,  or 
address,  of  the  person  to  whom  you  are  sending  mail.  Network  mailboxes  usually  take  the  form 

USERMAME@KOSTMAME .DOMAIN 

e.g.,  SMITH@NIC.DDN.MIL. 

Mail  that  is  transmitted  over  the  DDN  normally  requires  a  network  address  made  up  of  a  username  and  a 
hostname.  Occasionally,  you  can  omit  the  hostname.  For  example,  if  you  arc  sending  a  message  to  a  user  on 
the  same  host  as  the  one  you  are  using  (your  local  host),  you  need  not  include  the  hostname.  This  is  similar  to 
sending  an  interoffice  memo,  which  rarely  needs  a  full  name  and  address  to  reach  its  destination.  On  the  other 
hand,  a  message  sent  to  "John  Smith,  U.S.A"  has  little  chance  of  being  delivered  without  more  information.  The 
same  is  true  of  electronic  messages  without  a  valid  address.  Any  message  with  an  incomplete  or  incorrect 
address  is  relumed  to  the  sender  with  an  error  message.  If  a  mail  message  is  undelivcrable  due  to  network  or 
machine  problems,  most  mail  programs  try  to  resend  it  several  limes  before  returning  it  to  the  sender. 

Many  mail  programs  allow  you  to  use  a  local  text  editor  to  revise  or  correct  the  text  of  the  message  you  arc 
preparing.  The  mail  programs  themselves  usually  have  simple  editing  features  that  allow  you  to  delete  a 
character,  word,  or  line,  or  to  make  simple  corrections.  An  entire  file  may  be  sent  as  the  text  of  a  message, 
assuming  the  fde  is  not  too  large.  Many  mailers  outside  the  DDN  truncate  or  discard  messages  that  arc  longer 
than  50,0(X)  characters  in  size,  envelope  and  header  data  included.  It  is  usually  safer  to  limit  the  size  of  your 
messages  to  ensure  reliable  delivery. 

Following  are  examples  of  some  typical  procedures  for  sending  and  reading  mail  and  for  getting  help  within  a 
network  mail  program.  These  are  general  scenarios;  your  host  may  run  a  different  program  or  implementation 
than  the  ones  shown.  Only  the  bare  essentials  for  using  these  mail  programs  are  included  here.  We  urge  you  to 
read  the  manuals  for  your  mail  system  and  to  explore  the  online  help  facilities  to  expand  your  knowledge  of 
what  your  implementation  has  to  offer. 

In  the  examples  that  follow,  note  that  the  prompt  character  consistently  indicates  what  operating  system  or 
program  you  are  dealing  with  currently,  and  that  the  prompt  character  changes  as  you  progress  from  one  program 
to  another. 


[NOTE:  Computer  names,  user  names,  electronic  addresses,  and  other  data  u.scd  in  examples 
throughout  this  manual  are  not  intended  to  represent  currently  valid  inpul/outpul — i.c.,  .some  of 
the  data  may  be  "ficticious"  but  the  format  is  accurate.) 
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5.1.1  UNIX  MAIL  Examples 

Sending  Mail  Via  UNIX 

[NOTE;  UNIX  is  case-scnsitivc.  Most  UNIX  systems  require  that  commands  be  entered  in 
lowercase.] 


%i&ail  nic8nic .  ddn .  mil  <RetJim> 

User  asks  to  send  mail  to  a  well-known 
mailbox.  The  percent  sign  (%l  is  a  standard 
UNIX  system  prompt,  white  "maiT'  is  the 
command  that  invokes  the  Mail  program. 

User  must  insert  a  .space  before  typing  the 
message  address  on  the  same  line. 

Stib ject :  How  to  get  RFCs  <Return> 

The  Mail  program  prompts  for  message 
subject,  and  the  user  supplies  it. 

Row  do  I  retrieve  RFCs  using  the 
electronic  mail  utility? 

Thanks  for  your  help.  <Retum> 

M 

The  user  types  the  message  text,  ending  with 
a  control-d  fAf)  in  the  first  character  space 
of  a  line. 

% 

UNIX  prompt  returns. 

Reading  UNIX  MAIL 

%  mail  <Retum> 

User  invokes  the  Mail  program  at  the  UNIX 
prompt. 

You  have  mail. 

The  .Mail  program  announces  that  there  is 
mail  waiting  in  the  user’s  mailbox  and  prints 
the  headers  of  messages  received  si-'e  user 
last  checked  his  mail. 

New  mail:  1)  16 /Dec  SMITH@ISI.EDU  (292) 

2)  17/Dec  JONES0NIC.DDN.MIL 

3)  Etc... 

Where  is  RFC  212? 

(155)  Re:  RFC  212 

&  p  i  <Retum> 

Mail  prompt  (&)  is  presented,  and  u.ser  asks 
the  Mail  program  to  print  message  1  (p  1). 

The  full  message  text  wilt  be  printed  on  the 
user's  screen. 

Getting  Help  for  UNIX  MAIL 

Typing 

%  man  mail  connects  you  to  the  online  Mail  manual, 

&  help  displays  help  for  Mail  users. 

&  ?  displays  a  list  of  Mail  commands. 
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5.1.2  InfoMail  Examples 

Sending  a  Message  Via  InfoMail® 

[NOTE:  Since  InfoMail  runs  under  the  UNIX  operating  system,  and  UNIX  is  case  sensitive, 
InfoMail  commands  must  normally  be  entered  in  lowercase.) 


DDN3.->infomall  <Retum> 

User  invokes  the  Ir^oMail  program  at  his 
local  system  prompt. 

InfoMail  • —  Version  0.3x 

Username:  codel23  <Beturxi> 

Faesword:  <na  acho>  <K«tum> 

The  ItfoMait  banner  is  displayed,  and 
user  is  asked  to  log  in  with  his  mail 
username  and  password. 

con5>o»e  <»atum> 

At  the  InfoMail  prompt,  the  user  asks  to 
create  a  message  ("compose"). 

To:  c<»a&and8ddn2.dca.iall  <Raturn> 

rrom:  CODB1230DDK1.DCA,M2L 

IrfoMail  prompts  for  address  of  recipient 
and  automatically  .supplies  user's 
address  on  "From"  line. 

Subject:  Dial-upa  <Retum> 

Date:  12  July  1992 

JnfoMail  prompts  for  subject,  and  user 
enters  the  subject  of  the  message. 

InfoMail  automatically  supplies  the 
current  date. 

Text:  dial-ups  for  our  site. 

Usage  dooiand  Is  up. 

InfoMail  prompts  for  text,  and  user 
enters,  terminating  the  text  with  a 
carriage  return,  a  period  in  the  first 
space  of  the  next  line,  and  another 
carriage  return. 

— ■>  quit  <R©tui:n> 

DDNl-> 

User  types  "quit"  to  exit  from  InfoMail. 

The  loccd  system  prompt  returns. 
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DPN2~>in£c»Dail  <Retum> 


InfoMail  —  Version  0.3x 
Username:  CCMMAND  <Retuni> 
Password:  <no  echo>  <Ratum> 


INBOX, 

1  FROM:  CODEB999  /  SUBJECT:  DIAL-UPS  /  13  Jui 

2  FROM;  AF0DDN.A  /  SUBJECT;  SCHEDULE  /  14  Jul 

— >  next  <Retum>  Ai  the  InfoMail  prompt,  user  issues  a 

command  to  display  the  next  message, 
and  IrfoMail  does  so. 

To:  COMMAND8DDN2.DCA.MIL 
From;  C0DE1238DDN1, DCA.MIL 
Subject:  Dial-ups 
Date:  13  July  1992 
Text; 

Request  dial-ups  for  our  site.  Usage  demand  is  up. 

- - end  of  document- - 

— >  next  <Rfitum>  User  types  "next"  to  ask  for  the  next 

message. 

To:  COMMAND0DDN2.DCA.MIL 
From;  AF@DDN1.DCA.MIL 
Subject:  SCHEDULE 
Date:  14  July  1992 
Text: 

Mhat  is  the  schedule  for  the  next  InfoMail  demo? 

- - - end  of  DOCUMENT - 

— >  quit  <Retum>  User  types  "quifto  exit  from  the 

IrfoMail  program. 


User  invokes  the  InfoMail  program  at  his 
local  system  prompt. 

The  IrfoMail  banner  is  displayed,  and 
user  is  asked  to  log  in  with  his  mail 
username  and  password.  These  rnay  be 
entered  in  either  upper  or  lowercase. 
After  a  successful  login,  IrfoMail  notifies 
user  of  mail  in  his  "Inbox." 


Getting  Help  for  InfoMail 

Typing 


->? 


Prints  a  list  of  all  the  commands  that  can  be  issued  at  this  stage 
of  the  Mail  procedure. 


— ><coinmanciiiame>  ?  Lists  possible  input  for  completing  the  specified  command. 

— >describe  <commandname>  Tells  what  the  specified  command  docs  and  how  to  use  it. 
— >exaisple  <coBiniandnamB>  Prints  an  example  of  the  specified  command. 
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InfoMail  manuals  are  available  from 

BBN  Communications  Division 
10  Moulton  Street 
Cambridge,  MA  02238 


5.2  File  Transfer  Protocol  (FTP) 

FTP  is  a  protocol  that  enables  you  to  move  a  file  from  one  computer  to  another — even  if  the  computers  have 
different  operating  systems  and  file  storage  formats.  You  can  move  data  files,  programs,  text  files,  and/or 
anything  that  can  be  stored  online. 

To  use  FTP,  you  must  know  the  hostna'  e  or  the  network  address  of  the  remote  host.  You  must  also  have  an 
authorized  username  and  password  on  i'  remote  host  system,  and  you  must  know  the  name  of  the  file  you  want 
to  retrieve  from  or  send  to  that  system.  i  ou  can  then  copy  files  cither  to  or  from  the  remote  system.  Not  every 
file,  however,  can  be  FTP’d.  Only  those  files  that  have  public  "read  access"  (i.e.,  a  file  protection  designation 
that  permits  transfers)  can  be  transf  red  from  one  system  to  another. 

Some  hosts  provide  the  I’^er  ,ie  "anonymous"  for  FTP  file  retrieval  from  their  systems;  this  is  called  the 
"anonymous  login  con .  et  ..on."  Any  character  string  is  accepted  as  a  password  for  an  anonymous  login.  An 
anonymous  login  ar  ount  works  only  with  FTP.  It  is  not  an  account  that  can  be  accessed  for  general  use. 
Normally,  you  r"..inot  use  the  anonymous  convention  to  send  files  to  a  remote  host,  as  this  requires  a  specific 
login  account  on  that  host;  you  may  only  use  it  to  transfer  files  to  your  local  workspace  from  a  host  on  which 
you  do  not  nave  a  login  account.  However,  some  hosts  now  provide  public  directories  where  you  can  send  files 
as  well  as  retrieve  them. 

Thcoe  are  the  general  steps  used  for  a  file  uansfer  procedure: 

1.  Log  in  to  your  local  host  and  invoke  the  FTP  program. 

2.  Provide  the  hostname  or  network  address  for  the  remote  system. 

3.  When  you  have  successfully  established  a  connection  to  the  remote  host,  log  in  with  your 
authorized  username  and  password  on  that  system. 

4.  Issue  commands  to  send  or  retrieve  files. 

5.  When  you  arc  finished,  log  off  the  remote  host  and  exit  from  the  FTP  program. 

Depending  on  the  FTP  implementations  on  your  host  and  on  the  remote  host,  it  may  be  possible  to  display  a 
directory  listing  of  the  public  files  on  the  remote  host  and  to  request  remote  system  status  information. 

As  you  will  see  from  the  examples,  when  you  transfer  a  file  with  FTP,  messages  regarding  the  status  of  the 
action  you  have  requested  are  displayed  throughout  the  process.  The  FTP  server  on  the  remote  host  sends  the 
File  Transfer  messages.  These  messages  generally  have  the  following  characteristics: 

•  Every  FTP  command  generates  at  least  one  reply. 

•  A  reply  consists  of  a  three-digit  return  code,  followed  by  a  line  of  text  dc.scribing  the 
response. 
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•  If  a  single  line  of  text  accompanies  the  return  code,  a  single  space  separates  the  code  from 
the  text. 

•  If  more  than  one  line  accompanies  the  return  code,  a  hyphen  (-)  separates  the  code  from 
the  text. 

During  a  File  Transfer  session,  you  enter  a  command  and  then  wait  for  a  message  indicating  whether  the 
command  was  accepted.  Further  system  messages  describe  the  outcome  of  any  transfer  you  may  request. 

The  text  that  accennpanies  the  FTP  return  codes  may  differ  slightly  from  server  to  .server,  but  the  general 
meaning  of  the  numeric  codes  remains  constant. 

Programs  based  on  the  FTP  protocol  vary  a  great  deal  in  implementation  details.  The  examples  provided  hc.'c 
should  be  taken  only  as  guidelines.  Consult  your  local  system  representatives  for  assistance  with  the  FTP 
implementation  on  your  host 

Before  you  begin  a  File  Transfer  session,  it  is  best  to  become  familiar  with  the  general  command  sequence. 

An  example  of  an  FTP  session  conducted  between  two  UNIX  systems  appears  on  the  next  page.  In  the  example, 
a  user  carries  out  several  standard  FTP  procedures,  such  as  asking  for  a  directory  listing  of  the  public  files  on 
the  remote  system  and  then  changing  to  another  directory.  Remember  that  the  commands  to  accomplish  these 
tasks  may  vary  from  host  to  host,  and  not  all  host  FTP  servers  implement  all  commands. 
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5.2.1  Transferring  a  File  on  a  UNIX  System 

In  the  following  example,  both  hosts  are  running  UNIX. 


alSacu3-'i>ftp  f s3  .nisc .  nic .  com  <Return> 

Connected  to  FS3 . Nise .NIC . COM 


User  invokes  the  FTP  program  at 
his  heal  system  prompt,  and  the 
remote  FTP  server  responds  by 
displaying  its  banner  and  requesting 
a  login,  as  shown  below. 

220  faS  FTP  server  (NIC  Version  x.xx  ...  Wed  July  17  16:20:33  EDT)  ready. 
Name  {fa3. nisc. nic. com;barbv)  :  anonymous  <Retum> 

331  Guest  login  ok,  send  ident  as  password. 

Password:  guest  <Return>  (no  echo) 

230  Gudst  login  ok,  access  restrictions  apply. 


■'ftppls  ■■<Raturn>  "■ 

200  PORT  command  successful. 

150  Opening  ASCII  mode  data  connection  for 
file  list. 

etc-'  -  ■ 

pub 

netinfo 

INDEX 

iS-lR 

226  Transfer  complete. 

47  bytes  received  in  0.02secs  (2.3  Kbytes/sec) 

f  tp>cd  netinfo  <Retum>’ 

250  eWD: command  successful. 
ftp>ls  <Betum> 

200  PORT  command  successful. 


After  succes^ulty  logging  in  as 
"anonymous  guest,"  the  user  asks  for 
a  directory  listing  of  public  files  at 
the  FTP  prompt.  FTP  responds, 
priming  messages  regarding  the 
transfer. 


At  the  FTP  prompt,  user  issues  a 
command  to  change  to  the  netinfo 
directory,  then  asks  for  a  listing  cf 
files  in  the  new  working  directory 
(netirfo). 


150  Opening  ASCII  mode  data  connection  for  file  list. 

interest-groups 

domains 

nsfhet . policy 

226  Transfer  complete. 

125  bytes  received  in  0.04.  seconds  (3.1  Kbytes/s) 


ftp>  get  nsfhet  .  policy  <Retum> 


User  asks  for  a  tranter  of  the 
specified  file  to  his  own  file  system. 
Since  he  does  not  specify  a  new 
filename,  the  file  retains  the  same 
name  on  the  local  system. 

ZOO  PORT  command  successful. 

150  Opening  ASCII  mode  data  connection  for  nsfnet .policy  (2790  bytes). 

226  Transfer  complete. 

local:  hsfnet. policy  remote:  nsfnet .policy 

2847  bytes  received  in  0.12  seconds  (23  Kbytes/s) 

ftp>  quit  <Retum> 

abacus-2> 


User  types  "quit" to  exit  from  the 
FTP  program.  The  local  system 
prompt  is  displayed  again. 
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5.2,2  How  to  FTP  a  Directory  Listing 

The  example  that  follows  demonsiralcs  how  to  retrieve  a  list  of  file  names  from  a  public  directory.  (Not  all 
hosts  provide  this  feature;  check  with  the  online  help  system  or  your  local  user  support  representative.)  In  the 
example,  the  user  is  logged  on  to  a  host  running  the  UNIX  operating  system.  He  u.scs  FTP  to  connect  U)  the 
host  NIC.DDN.MIL,  then  logs  in  under  username  "anonymous"  and  password  "gucsi.  ’  He  enters  the  "dir" 
(directory)  command  for  the  directory  "RFC"  to  sec  the  names  of  accc.ssiblc  files.  (Because  the  actual  directory 
list  is  long,  only  the  first  few  files  and  the  last  file  are  shown  in  the  example.) 

After  the  directory  listing  is  displayed,  the  user  can  copy  a  file  or  files  from  the  remote  host  directory,  but  this 
procedure  is  not  included  in  the  example.  He  issues  the  FTP  command  "bye"  to  exit  from  the  program  and  close 
the  connection  to  the  remote  host,  which  returns  him  to  the  local  host  operating  system. 


%  ftp  <Retum> 

]tTP->  nic.ddii.ml  ■<Retum> 

36-bit  conrjections,  pag^d  transfers) 

<NIC.DDN.MIL  FTP  Server  Process... 

FTP>  login  anonymous  <ltetum> 

Password:  guest  <Ketura>  -  . 

<User  WilOJrsfMO0S  logged  in  at  Thurg  7-Aug-92  14:14  EOT,  job  31. 

dir  rfc  <Retum> 


<11 St  started. 
P$t<RFC> 

rfc-index.TXT, 11 4 
rfol89.TXT. 1 
1££c407.TXT,1 


rf 0931. TXT, 1 

^26  Transfer  coittpiete. 

47  bytes  received  in  0.02secs  (2.3  Kbytes/sec) 
FTF>  bye  <Retum> 

>  BYE  command  received.  Goodbye. 
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5.3  Using  TELNET 

Another  valuable  way  to  use  the  network  is  offered  by  the  TELNET  utility,  which  allows  you  to  log  in  to  a 
remote  host  from  a  kxal  host  {assuming  that  you  have  an  authorized  account  on  Uie  remote  host).  Once  you 
have  established  a  TELNET  connection  and  logged  into  the  remote  host,  you  can  enter  data,  run  programs,  and 
otherwise  operate  just  as  though  you  were  logged  in  directly.  During  a  TEL.NET  session,  each  transition  to  a 
different  interactive  program  causes  a  shift  to  a  different  command  level.  With  each  level,  the  form  of  Uie 
prompt  varies.  Command  formats  also  vary  with  each  level.  You  can  often  tell  which  sysicin/program  you  arc 
using  by  the  prompt  symbol.  The  steps  for  running  TELNET,  very  briefly  summarized,  are  as  follow.s. 

•  Log  in  to  your  local  host. 

•  Invoke  the  TELNET  program  from  that  host. 

•  Identify  by  hostname  or  network  address  the  remote  host  that  you  want  access  to. 

•  When  the  TELNET  connection  is  established,  log  in  U)  the  remote  host  with  the  username  and 
passw  ord  that  have  been  assigned  to  you  on  that  iiost. 

•  Perform  whatever  ta.sks  you  like  on  the  remote  machine,  being  careful  not  to  violate  any  rem'ite 
operating  system  rules. 

•  NVhen  finished  working  on  the  remote  host,  type  the  remote  logout  command.  Then  close  the 
TELNET  connection — if  it  is  not  automatically  clo.scd  on  logout. 

•  You  are  once  again  operating  in  your  local  ho.st  system  environment. 

TELNET  has  other  advanced  features  too  numerous  to  discuss  here.  Check  you  local  TELNET  user  program  for 
online  documentation,  or  talk  to  your  local  Host  Administrator  or  user  support  rcprc.scntauvc  for  more 
infomation. 
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5.3.1  Invoking  TELNET  with  the  Hostname  on  the  Command  Line 

In  the  following  example,  a  user  TELNETs  from  a  local  UNIX  host  to  a  remote  SunOS  host.  Once  tlie 
connection  has  been  established,  the  prompts,  commands,  and  responses  arc  those  of  the  Sun  Operating  System 
environment.  To  the  user,  it  appears  as  though  hc/she  were  directly  logged  in  to  the  remote  computer. 

After  the  user  is  done  working  on  ihe  remote  host,  he  issues  the  remote  system’s  logout  command.  This  logout 
automatically  returns  him  to  the  TELNET  program  on  the  local  host,  closes  the  TELNET  session,  and  returns  the 
local  operating  system  prompt  (%). 

Note  that  instead  of  invoking  the  TELNET  program  and  then  issuing  an  "open"  command  to  the  remote  host  at  a 
TELNET  fwompt,  the  user  supplies  the  remote  hosmame  directly  on  the  program  invocation  line.  (Not  all 
implementations  recognize  this  form  of  connection.)  In  addition,  note  that  the  user  would  need  an  authorized 
account  on  the  NIC  host  to  log  in  with  username  and  password  as  shown  in  the  example. 


%  taln«t  gsimail.ridn.iiULl  <Ratum> 


Trying  l&2.ia2 .37 , 10 
Connected  to  gsirRail.ddn.tnil 
Escape  chaitacter  ia  * 

System  5  OKIX  fgsimail) 


login:  <aserid>  <Return> 
yasawoed;  <Retum> 


.VSHR  SESSION.,, 


8  logout.  <Retum> 


Coaoection  closed  by  remote  host- 
% 


User  issues  the  telnet  command,  giving  the 
remote  hostname  as  an  argument  on  the 
command  line. 

TELNET  prints  messages  dunng  connection 
establishmenti  affirms  the  connection,  and  noises 
the  user  of  the  escape  character  (see  discussion 
(ff  escape  :haraters  in  Chapter  4}.  The  NIC  host 
prints  Us  banner  and  prompt 

User  enters  fas  remote  system  userid  and 
password~  Tke  password  does  not  echo  on 
screen. 


After  completing  his  work,  user  issues  a  logout 
Command  to  exit  from  the  remote  system.  The 
connection  is  closed  automatically  and  the  local 
prompt  reappears. 
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Instead  of  invoking  TELNET  and  specifying  a  hostname  for  the  remote  host,  you  may  specify  the  remote  address 
in  dot  notation  format.  Some  hosts  require  the  network  address  to  be  enclosed  in  brackets  if  it  is  supplied  on  the 
command  line.  (Many  TELNET  implementation  prompt  for  a  network  hostname  or  address  if  you  do  not  specify 
one,  and  they  may  allow  you  to  open  the  connection  after  asking  for  help  or  issuing  other  TELNET  commands.) 
To  establish  a  TELNET  connection  using  a  host  address,  proceed  as  shown  in  the  example  below.  The  example 
presumes  a  user  rat  a  UNIX  host  connecting  to  the  NIC’s  SunOS  system  via  TELNET.  After  reaching  the  NIC 
host,  the  user  looks  up  a  name  with  the  WHOIS  program,  exits  from  WHOIS,  and  then  closes  the  connection. 
(Note  the  change  from  UNIX  prompt  symbol  to  the  NIC  prompt  and  back  again.) 
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%  teloet  192. 112, 3€. 5  <Seturn> 
frying  192, 112 .36.5  ... 

Connected  to  nic.ddn.tnil, 

E&cepe  cbBracter  is 

SunOS  (nic) 

--  DON  Network  infojaiftatien  Center  — * 

*  for  TAC  newSr  type;  .  fACNEWS  <return> 

*  For  user  end  host  information,'  type;  WHOIS  <return> 

*  ror  NIC  infonnation,  type:  NIC  <return> 

*  For  OSes  assistance  call  (800)  365-3642  or  (800)  365-DNIC  or 

<703)  802-4535 

*  Report  system  problems  to  ACfION0HIC.D!>N.Mit< 

NIC,  SunOS  Release  4.1.1  (NIC}  *1; 
fhu  Sep  26  11; 18: 20  1991  ESf 
0  wboie  irarallob 

Connecting  to  id  database  ...... 

Connected  to  id  Oatabaee 

Varallo,  Barbara  {BV36)  varailobeKic.DDN.MIl. 

Network  Solutions,  Inc. 

505  Huntjnar  Park  Brive 
Herndon,  VA  22070 
(703)  802-8461 

Record  last  updated  on  08-Aug-91. 

Enter  a  handle,  name,  mailbox,  or  other  field,  optionally  preceded 
by  a  keyword,  like  "host  nic”.  Type  "?'*  for  short,  2-page 
details,  "HELP’*  for  full  documentation,  or  hit  RETURN  to  exit. 

— >  Bo  to  show  search  progress,  ''G  to  abort  a  search  or  output  < - - 

Whois;  <Il6tuttt>- 
S  logoxtt  <Retum> 

Thu  Sep  26  11:19:2$  I99l  EST 
Connection  closed  by  foreign  host. 
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SECTION  6.  DDN  NETWORK  INFORMATION  CENTER  (NIC) 


The  DDN  Network  Information  Center  (NIC)  is  located  at  the  DDN  Installation  and  Information  Services  (DIIS) 
program  office  in  Chantilly,  Virginia.  The  NIC  is  funded  by  the  Defense  Information  Systems  Agency  (DISA), 
Defense  Network  Systems  Organisation  (DNSO).  The  NIC  is  responsible  for  providing  general  reference 
services  to  DDN  users  via  telephone,  electronic  mail,  and  U.S.  mail.  The  NIC  also  provides  databases  and 
information  services  of  interest  to  network  users,  including  the  WHOIS  registry  of  network  users  and  other 
network  entities,  the  NIC/Query  browsing  system,  TACNEWS,  and  the  official  DoD  Host  Name  Service.  The 
NIC  maintains  the  RFC  (Request  for  Comments)  collection  on-line.  Many  other  online  informational  files  arc 
also  available  through  the  NIC’s  automatic  mail  service,  SERVICE<®N1C.DDN,MIL. 

Among  its  other  duties,  the  NIC 

•  registers  hosts  and  domains, 

•  assigns  IP  rtetwork  numbers  and  Autonomous  System  Numbers  (ASNs), 

•  provides  hostname  translation  tables  and  domain  name  system  server  files  to  the  DDN  and  the 
Internet, 

•  registers  network  users, 

•  issues  MILNET  TAC  Access  Cards. 


6.1  Contacting  the  NIC 

6.1.1  NIC  User  Assistance  Help  Desk 

The  NIC  provides  user  assistance  in  a  number  of  ways.  Our  main  Help  Desk  phone  numbers  arc 
1 -800-365 -DNIC  (within  the  continental  United  States) 

1-703-802-4535  (outside  the  continental  United  States  and  in  the  Washington,  D  C. 

metropolitan  area) 

1-703-802-8376  FAX  Number 

The  first  number  is  toll  free,  while  the  area  code  703  numbers  are  toll  free  in  the  Washington  area  only. 

The  NIC  provides  Help  Desk  assistance  to  those  who  experience  problems  with  using  the  network  in  general  and 
with  terminal-to-TAC  use  in  particular.  Should  you  have  a  security  problem  or  concern,  the  NIC  can  connect 
you  with  the  Security  Coordination  Center.  In  addition,  the  NIC  is  happy  to  answer  questions  about  any  other 
service  outlined  in  this  section.  The  NIC  Help  Desk  services  arc  available  from  7  a.m.  to  7  p.m.  (EST/EDT), 
Monday  through  Friday. 
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6.1.2  NIC  Host 

The  NIC  compuier’s  hostname  and  network  address  are: 

NIC.DDN.MIL 

192.112.36.5 

NIC  online  services  are  available  24  hours  a  day,  7  days  a  week. 

6.1.3  NIC  Online  Contacts 

The  NIC  supports  several  online  mailboxes  to  provide  assistance  in  specific  areas.  This  list  is  provided  here  for 
easy  reference.  The  following  sections  provide  more  detailed  information  regarding  the  type  of  inquiries  each 
mailbox  handles. 


Type  of  Inquiry 

Network  Mailbox 

General  User  Assistance 

NICtaNIC.DDN.MIL 

TAC  and  Non-TAC  User  Registration 

REGISTRAR@N1C.DDN.MIL 

Urgent  Security  Matters 

NIC-ALERT@NIC.DDN.MIL 

Host,  Domain,  and  Net  Registration 

HOSTMASTER@NIC.DDN.MIL 

NIC.DDN.MIL  Computer  Operations 

ACTION@NIC.DDN.MIL 

Comments  on  NIC  Publications,  Services 

SUGGESTIONS@NlC,DDN.MIL 

Security  Concerns  and  Questions 

SCC@NIC.DDN.MIL 

Usage-Sensitive  Billing  Questions 

B1LLING@NIC.DDN.MIL 

Automatic  Mail  Service 

SERVICE@NIC.DDN.MIL 

Reporting  NIC  Software  Bugs 

BUG-SERV1CE@NIC.DDN.MIL 

6.1.4  NIC  U.S.  Mail  Address 

The  NIC’s  current  mailing  address  is 

Network  Information  Center 
14200  Park  Meadow  Drive,  Suite  200 
Chantilly,  VA  22021-2219 


6.2  NIC  Services 

In  addition  to  the  user  assistance  Help  Desk  described  in  Section  6.1.1,  the  NIC  provides  registration,  billing,  and 
security  support  services. 
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6.2.1  Network  and  User  Registration  Services 

The  NIC  registers  the  following  network  cniilics; 

•  domains 

•  IP  network  numbers 

•  inverse  addressing  data 

•  Autonomous  System  Numbers  (ASNs) 

•  hosts 

•  TACs/Mini-TACs 

•  gateways  and  PSNs 

•  some  network-related  organizations. 

Registration  of  MILNET  hosts,  TACs,  gateways,  and  PSNs  is  coordinated  with  the  MILNET  Manager.  If  you 
wish  to  register  an  IP  network,  domain,  or  ASN,  contact  the  NIC  Help  Desk  for  information  regarding 
procedures.  New  users  seldom  need  to  register  these  entities. 

Each  individual  who  has  TAC  access  to  the  DDN  must  be  registered  in  the  NIC  WHOIS  database.  Host 
Administrators  register  individuals  in  the  database  as  part  of  the  process  of  authorizing  TAC  cards  for  them. 

You  will  find  it  useful  to  be  registered  in  this  database  because  it  serves  as  an  eiecuonic  white  pages  for  DDN 
users.  Non-military  Internet  Points  of  Contact  are  often  listed  there  as  well. 

To  be  registered  in  the  NIC  WHOIS  database,  you  will  need  to  fill  out  a  copy  of  the  NIC  regisuation  template 
(Figure  6-1  on  the  following  page)  and  send  it  to  the  network  mailbox  REGISTRAR@NIC.DDN.MIL.  You  may 
obtain  this  template  via  file  transfer  (FTP)  from  the  N1C.DDN.MIL  machine  (192.112.36.5  is  the  numeric  host 
address)  using  the  pathname  netinfo/user-template.txt  or  templates/user-template  .txt 
—  or  you  may  reproduce  the  template  yourself  if  you  adhere  strictly  to  the  format  of  the  online  file.  Detailed 
instructions  for  filling  out  the  template  are  included  in  the  file.  The  format  of  the  template  may  change  as  DISA 
dictates,  but  the  latest  approved  version  will  be  maintained  online  at  the  NIC. 

(Instructions  for  using  FTP  to  copy/retrieve  a  file  are  presented  in  Section  5.1.2,  or  you  may  consult  your  local 
FTP  documentation.) 


6.2.2  Usage-Sensitive  Billing  Service  Desk 

Since  the  advent  of  usage-sensitive  billing  on  the  DDN,  the  NIC  has  provided  a  service  to  answer  queries 
regarding  DDN  billing.  This  support  is  provided  primarily  for  POCs  who  receive  the  bills  and  have  questions 
about  them.  If  you  have  received  a  bill  for  DDN  usage  and  have  any  questions  about  it,  you  can  contact  the 
NIC  Help  Desk  as  described  in  Section  6.1.1  or  send  a  message  to  BILL1NG@N1C-DDN.MIL. 
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D .  Sattiple  Template 


Sarsple  t/aer  Registration  Template  version  U1.2  -  9/92 

Do *Not  Change  Format I 

Enter  Data  Here 

+  Ul.  NIC  Handle  (See  A. 2^3) . 

NAHE  INFORMATION 

+  U2a.  Last  Name . 

XYZ23 

Zosters 

+  U2B.  First  Name. ................ 

Xary 

y. 

U2C.  Middle  Nsune  ox  Initial . 

U20.  Name  Suffix. . . . 

D2E.  Title /Rank . 

ADDRESS  INFORMATION 

+  USA.  Addresa  Line  1........ . 

Fictitious  Solutions/  Inc. 
SOS  Huntmar  Or. 

03b  .  Address  Line  2 . . . . 

03C .  Address  Line  3. ...... ...... 

U3D.  Address  Line  4., . . . 

+  t/Se.  City  or  FFO/AFO  (See  A. 4).. 
+  DSf.  State  or  FPO/APO  Code  (A. 4) 
+  D3G.  Sip  Code  (See  A. 4) . . 

Imaginary 

VA 

22079 

USA 

U3R.  Country . . . 

U3I .  Network  Mailbox. . . . 

xyrgnic .ddn .mil 

NZC.ODM.MIL 

(703)  999-8484 

1134 

+  D3J.  Hostname. . . 

RHONE  INFORMATION 

+  t?4A.  Commercial  Rhone.  —  ....... 

b4B.  Commercial  Rhone  Extension. 
U4C.  Alternate  Phone. . . 

04D.  Alternate  Phone  Extension.. 

04S.  DSN  Phone . 

114? .  DSN  Phone  Extension . 

1140.  Fax  Phone . . . 

OSER  STATUS 

USA.  Delete  User?  (See  A.3>fY/N] 
+  USB.  TAC  Card  Required?  [Y/NJ . . . 

x 

Figure  6.1.  User  Registration  Template 


6.2.3  Security  Coordination  Center  (SCC) 

The  NIC  is  the  site  of  the  DDN  Security  Coordination  Center  (SCC).  The  SCC  acts  in  conjunction  with  the 
DDN  Netwofic  Security  Officer  (NSO)  to  coordinate  actions  related  to  security  incidents  and  network 
vulnerabilities.  The  SCC  relays  security-related  information  to  the  Network  Security  Officer  (NSO)  and  works 
with  him/her  in  handling  network  security  problems.  In  addition,  the  SCC  issues  DDN  Security  Bulletins  to 
network  users.  You  can  contact  the  SCC  in  the  following  ways: 
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By  ElecUonic  Mail: 

SCC<S)N1C.DDN.M1L 

By  Phone; 

l-8{X)-365-DNlC  (continental  U.S.) 

1-703-802-4535  (outside  U.S.  and  in  the  D.C,  metro  area) 

By  FAX; 

1-703-802-8376 

By  U.S.  Mail: 

Network  information  Center 

ATTN;  Security  Coordination  Center 

14200  Park  Meadow  Drive,  Suite  200 

Chantilly,  VA  22021-2219 

Phone  hours  arc  from  7  a.m.  to  7  p.m.,  Eastern  Standard  or  Eastern  Daylight  Time. 


6.3  NIC  User  Programs 

The  NIC  offers  several  online  programs  that  DDN  users  may  access  to  retrieve  various  kinds  of  information. 
The  WHOIS,  TACNEWS,  NIC/Query,  and  SERVICE  programs  and  procedures  for  using  them  are  described  in 
this  section.  The  NIC’s  Kermit  server  is  also  described. 


6.3.1  WHOIS 

WHOIS  is  the  NIC  program  that  looks  up  information  in  an  electronic  "white  pages’  directory  of  network  users. 
You  can  also  obtain  information  on  hosts,  gateways,  TACs,  domains,  and  other  network  entities  from  WHOIS. 
WHOIS  lists  the  name,  network  mailbox,  U.S.  mail  address,  telephone  number,  host,  and  TAC  user  status,  where 
applicable,  for  each  user  registered  in  its  dalabase.  For  other  entities,  it  provides  such  information  as  domain 
names,  a  list  of  domain  servers,  domain  contacts,  network  numbers,  network  contacts,  known  hosts  on  a  given 
network  or  gateway.  Host  Administrators,  and  Node  Site  Coordinators.  Phone  numbers  and  network  mailbox 
addresses  arc  provided  for  all  those  who  serve  as  Points  of  Contact  (POCs). 


6.3.1.1  Accessing  WHOIS 

Here  are  some  instructions  for  accessing  the  WHOIS  program  from  different  points  of  origin; 

From  a  TAC 

•  Type  @n. 

•  After  being  greeted  by  the  TAC  banner,  press  <Rcliim>  and  enter  your  TAC  userid  and  TAC 
Access  Code  when  prompted. 

•  After  the  NIC  host  banner  and  greeting  arc  displayed,  type  whois  <Retum>. 

From  a  DDN  Host 

•  Log  onto  your  local  host  and  TELNET  to  the  NIC,  c.g.. 
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telnet  nic.cLdn.mil  <Return> 


or 


telnet  192.112.36.5  <Betum> 


•  After  the  NIC  host  banner  and  greeting  is  displayed,  type  whois  <Return>. 


Via  Electronic  Mail 

•  From  your  login  host,  invoke  the  mail  program  and  send  a  message  to 

SERVICE@Nir . DDN . MIL 

•  As  the  subject  of  the  message  (i.e.,  on  the  "Subject:"  line),  enter  WHOIS  and  the  string  you  want 
the  program  to  search  on — e.g.. 

Subject:  whois  nic.ddn.mil 

Any  valid  WHOIS  search  input  string  can  be  sent  to  the  SERVICE  program.  However,  if  the 
response  is  large,  it  will  be  split  into  several  return  messages.  If  it  is  very,  very  large,  it  may 
exceed  the  capacity  of  the  Mail  server,  but  most  search  outputs  are  well  within  its  limits. 

You  may  also  run  the  WHOIS  program  from  a  local  host  if  you  have  one  of  the  several  WHOIS  user  programs 
that  are  available  for  various  operating  systems.  Contact  the  NIC  if  you  are  interested  in  obtaining  such  a 
program. 


63.12  Using  WHOIS 

To  use  WHOIS,  you  can  supply  either  the  name  or  the  NIC  "handle"  of  the  person  or  entity  you  are  trying  to 
identify.  The  handle  is  a  unique  identifier  that  the  NIC  assigns  to  each  entity  registered  in  its  database.  Partial 
searches  on  the  first  part  of  a  name  are  also  possible. 

The  WHOIS  program  accessible  on  the  NIC  host  also  recognizes  certain  keywords.  They  tell  WHOIS  to  limit 
its  search  to  certain  kinds  of  records — such  as  host  records  only,  or  domain  records  only.  If  you  search  with  a 
keyword,  you  must  insert  the  keyword  in  the  search  string  before  the  entity  for  which  you  want  information. 
Such  keywords  can  increase  the  speed  of  a  search.  Some  of  the  keywords  that  the  NIC  host’s  WHOIS  program 
recognizes  arc  as  follows: 


DOM 

for  domain  records 

GA 

for  gateway  records 

HO 

for  host  records 

NET 

for  network  records 

PSN 

for  PSN  records 

TAC 

for  TAC  records. 

WHOIS  is  not  case  sensitive.  Some  of  the  examples  that  follow  use  keywords  and  .some  do  not.  Tho.se  that  do 
use  keywords  assume  that  you  have  used  TELNET  to  connect  to  the  NIC.DDN.MIL  for  access  to  their  WHOIS 
program.  For  a  complete  list  of  keywords  and  examples  of  how  to  use  them,  simply  type  help  or  a  question 
mark  (?)  at  the  WHOIS  prompt,  e.g.. 


40 


NIC  60001,  February  1993 


THE  DON  NIC 


Whois:  help  <Returri> 


WHOIS  responds  to  your  query  in  one  of  three  ways; 

1 .  If  WHOIS  finds  a  unique  record  for  the  individual/entity  you  have  identified  as  the  subject  of  the 
search,  it  immediately  displays  the  following  information: 

•  the  name 

•  the  NIC  handle 

•  the  organization  (if  applicable) 

•  the  mailing  address 

•  the  phone  number 

•  the  network  mailbox. 

2.  If  WHOIS  finds  several  records  that  match  the  search  input,  it  displays  a  brief  list  of  the  matching 
entries  and  asks  you  to  choose  the  correct  match  by  using  the  handle  (a  unique  character  sU'ing  in 
parentheses  following  the  name).  A  search  by  handle  produces  the  expanded  output  for  the 
matching  entity. 

3.  If  no  record  matches  the  search  input,  WHOIS  displays  the  message  "No  match  for  <scarch- 
slring>,"  where  <search-string>  is  the  character  sequence  you  entered. 

The  following  examples  illustrate  some  of  the  WHOIS  capabilities.  For  more  information  on  using  WHOIS, 
connect  to  the  NIC  host  and  type  whois  help. 


63.U  WHOIS  Search  Examples 

[NOTE;  The  names,  addresses,  phone  numbers,  and  other  information  shown  in  the  following 
examples  are  meant  to  be  representative  only;  they  arc  not  necessarily  actual  or  accurate  data 
and  should  not  be  used  for  contacting  any  of  the  entitics^rsons  identified!  ] 
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WHOIS  Search  by  Name 


UNIX  (riic) 

—  DDN  Networic  InCorraation  Center  — 

*  For  5AC  news^  typo:  TACNEWS  <return> 

*  For  user  and  host  information,  type:  WHOIS  <return> 

*  For  NIC  information,  type:  NIC  <return> 

*  For  user  assistance  call  (800)  365-3642  or  (703)  802-4535 

*  Hdport  system  problems  to  ACTION0N1C.DDN.MII, 

NIC*  SunOS  Release  4.a.l  INICI  n: 

Thxj  Sep  26  14:11:08  19^  BSO' 

g  whois  rosco«  <Retum>  (There  is  only  one  ''Rostoe"  so  a  campleie  entry 

is  displayed  for  him.) 

Connecting  to  id  Database  . 

Connected  to  id  Database 

FOSCOE,  Joe  A.  (JARl)  JROSCOBSHOST-l .DOMAIN, MIL 

Air  Force  Data  Systems 
Desigrn  Center/ SDTS 
Willits  Air  Force  Base,  W  12345 
Fhone;  {123>  45$-78$0 
TAC  User 

Record  last  updated  on  31-Jul-91' 
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R<j5a.ti/  Ddvld 

Resales /  Alphonse  h.  {ALR) 

RosCdi^,  Joe  A.  (JARIJ 


Ro 3 at i gBAE , FOO 
RosaiesgNIC .DON. MIL 
RoscoeBHOST-l . DOMAIN . MI L 


Behjnttan,  Richard  D.  (ROS)  SchuinanSFOO^BOO.com 


There  are  2S  mere  entries.  Show  themt 


lari  is  the  handle  for  ROSCOE. 


0 whole  !jarX 


ROSCOE,  Joe  A.  (JARlJ 
Air  Force  Data  Systems 
Design  Center/SDTS 
WillitS  Air  Force  Base,  WV 
Rhone:  <123)  4S6-7890 

MILNBT  TAG  User 


JROSeOEd HOST*^!  . DOMA IN  .MIL 
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WHOIS  Search  by  Partial  Name 

You  may  search  using  only  a  partial  name  as  the  search  string  by  entering  the  partial  name  followed  by  one  to 
three  dots  (...).  This  search  feature  will  work  only  if  the  dots  follow  the  partial  name  without  any  intervening 
spaces.  This  kind  of  search  is  apt  to  produce  multiple  "hits"  (hits  arc  entries  that  match  a  given  search  string). 

Note  that  the  partial  name  search  also  finds  any  NIC  handles  that  begin  with  the  partial  name  input  ("ros"  in  the 
example  that  follows). 


To  obtain  all  the  information  pertaining  to  any  of  these  names,  do  a  WHOIS  search  on  the  handle  (the  text  in 
parentheses  immediately  following  the  name);  this  will  produce  a  full  entry. 

WHOIS  Search  by  Handle 

If  a  WHOIS  search  produces  multiple  hits  on  your  query,  search  by  the  unique  handle  to  get  the  full  enuy  of  the 
hit  you  want  to  display.  Precede  the  handle  with  an  exclamation  point.  Users  on  hosts  running  a  UNIX 
operating  system  may  need  to  precede  the  exclamation  point  with  a  backslash  (\). 


(466)  789-0123 


(234)  567-8901 
(345)  678-9012 
(123)  456-7890 
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WHOIS  Search  by  Hostname 

If  you  know  a  hostname  and  need  to  obtain  the  host  address,  you  may  use  WHOIS  to  look  it  up  by  typing  your 
input  as  shown  in  the  following  example: 


Note  that  this  search  produces  the  hostname,  the  host  address,  and  the  name  and  phone  number  of  the  Host 
Administrator.  Pressing  <Retum>  will  produce  a  list  of  the  people  registered  with  the  NIC  as  users  of  that  host. 
You  will  find  the  same  information  if  you  know  the  host  address  or  nickname  and  search  on  one  of  those  instead 
of  the  official  hostname. 


NIC,  SunOS  Release  4.i.l  (NIC)  #1: 

Thu  26  14;aX:D8  199X  EST 

gwktoia:  (User  enters  known  hostname  <rfter  connecting 

to  the  NIC  host  and  types  a  "N?"  to  fee  haw 
the  search  is  progressing.) 

Connect io$r  to  id  Database 
Connected  to  id  Database 

X4iX3;03  —  No  matches  yet. 

BBK  INC.  (DDNi) 

1300  North  17th  Street 
Arlington,  VA  22209 


Ho  St  name :  DDN-CONUS .  DDN .  MIL 
Nicicftames ;  DDNl . DCA .MIL, DDN . DCA , MIL 
Address:  26.21.0.17 
Synteati  S8N*k;/70  running  ONIX 
Host  Administrator: 

Bolden,  Michelle  L.  (Shelly)  (MLB6) 
I7D3>  284-4600 


Record  last  updated  on  05-Sep-9l . 

Would  you  like  to  see  the  registered  users  of  this  host?  y  <Retum> 
There  are  202  registered  users;. 


Adams,  Onentin  (qAAl)  nsc-robins^DDN-CONUS .DDN.mil 

(912)  926-6912  (DSN)  468-6912 

Agney,  Violet  <VA24]f  NSCElinen6DDN-CONUS.DDN.MiL 

(907)  552-4919  (DSN)  317-552-4919 
Agnor,  Robert  J.  (RJA2S}  navtelcom6DDN-conus.ddn.mil 

(202)  282-0624  (DSN)  292-0824 
Atkinson,  Barry  K.  (BKA)  DIA-RSBgDDN -CONUS. DDN. MIL 

(703)  284-0801  (DSN)  251-0801 

Bailey,  Erich  {£S68>  NSC-RresidioeDDN-CONUS.DDW.MIL 

(415)  S61-2241  (DSN)  586-2241 
There  are  197  more  matches.  Show  them?  n  <Retum>- 
Enter  a  handle,  name,  mailbox,  or  other  field,  optionally  preceded 
by  a  keyword,  liJse  "host  sri-nic”.  Type  "?"  for  short,  2-page 
details,  "HELP"  for  full  documentation,  or  hit  return  to  exit . 

>  Do  "E  to  Show  search  progress,  ''G  to  abort  a  search  or  output  < — - 
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WHOIS  Search  by  TAC  Name 

You  may  use  WHOIS  lo  obtain  a  TAC  telephone  number  if  you  know  the  u,-'’:  of  the  TAC.  A  search  by  TAC 
name  will  also  show  contact  information  on  the  Node  Site  C(X)rdinalor  for  the  TAC.  Follow  the  example  below 
to  do  this  type  of  search. 


Entec  «  baiKjle,  narre,  mailbox,  ox  other  field,  optionally  preceded 
by  a  keyword,  like  *'ho3t  sri-nic'C  Type  for  short,  2~page 
details,  "HSiiP”  for  full  documentation,  or  hit  RETURN  to  exit. 

— >  Do  to  show  search  progress,  “'G  to  abort  a  search  or  output  < 

Nhols:  bac  belvoix.nb.ddn.mil  <Retujn)> 

Fort  Belvoir  (BEUVOIR-MIL-TAC) 

Army  Information  Systems  Command  (USAISC) 

Building  24€,  Room  202,  2nd  Floor 
Fairfax,  VA  22060 

<70:3)  781-0050  (RS)  [300/1200  bps]  fB} 

<703)  781-0100  (R8)  (300, '1200  bps]  <B) 

Sostname:  BEL VOIR. MX. DDN. MIL 
Address:  2$. 0.0. 142 
XAC  number;  162 
Hardware:  C/30 

•  Coordinator: 

dewell,  Brenda  K,  (BJ53}  NSCBelvoir8DDN-CONUS.DDN.MIL 
(7031  664-3458  (DSN)  3S4-3458 

Record  last  updated  on  22-Uun-90 . 
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WHOIS  Search  by  PSN  Number 

You  may  use  WHOIS  to  search  by  node  (PSN)  number.  The  output  from  this  .search  will  show  tlic  usual  KX' 
information  as  well  as  a  list  of  the  hosts  connected  to  that  node  that  are  registered  with  the  NIC. 


CHANTXLEY  is  PSN/ IMP  201  on  network  26 


eHANTlLLY2  is  PSN/ IMP  202  on  nstwork  26 


Xocoxd  last  updated  on  04-Sep-91, 


No  hosts  found  on  this  PSN. 


Whois;  p«a  202  <R«turn> 

G3I  (CitANTILLYS-IMP) 

14200  Park  Meadow  Drive 
Chantilly,  VA  22021 


Coordinator: 

Zalubski,  John  tJ27)  zjlub3kij@NIC.DDN.MiL 
(703)  802-'8462 


Coordinator; 

Salubski,  John  {JZ7)  zalubs kijeNIC.DDN.MiL 
(703)  802-8462 


Hosts  5 on  this  PSN: 

CHANTILLyi.MI.DDN.MlL  26.0.0.201 

NXCi.DON.MIL  26.1.0.201 

SUNl.DDN.MXL  26.24.0.201 

GSI-<iWl .DDN.MIL  26.25.0.201,  192.112.36.1, 

192.112.37.1,  192.112.38.1 


Whois  t  psn  201  <Ratui;n> 
QSl  (CHANTILLY-IMP) 

14200  Park  Meadow  Drive 
Chantilly,  va  22021 
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WHOIS  Search  by  Network  Number 

You  may  use  WHOIS  to  search  by  network  number.  To  search  for  information  about  a  Class  C  network,  make 
sure  the  last  octet  in  the  network  number  is  zero.  To  search  for  a  Class  B  network,  make  sure  that  the  last  two 
octets  arc  zero.  See  section  8.4  for  a  discussion  of  network  addres.scs  and  classes. 


t  <Return> 

;Soveirnjitent  Systems,  Inc,  (NET-tOCALNET) 

:  ;  14200^;  ?^  Suite  200 

Chantilly,  VA  22020 

Retname:  localnet 
Coor<iinator; 

McCollum,  Robert  (RMS84)  bobn^NIC.DDN .MIL 
<703)  802-8476 

DOi&Ain  System  inverse  mapping  provided  by: 

•SIC, DDR. MIL  192,112.36.5 

SIC-DEV.DDS.MXL  192.112,38.89 

Xteoord  last  updated  on  14-Aug-91, 

■Rould  you  like  to  see  the  known  hosts  on  this  network?  y<R*tuam> 

There  are  2  known  hosts: 

RIC.DDR.HIL  192. 112. 36. S 

OSX-CMl.DDN.MXL  26.25.0.201,  192.112.36.1, 

192.112.37.1,  192.112.;38.1 


The  user  can  enter  "y"  or  simply  press  <Rctum>  to  see  a  list  of  hosts  registered  with  the  NIC  as  part  of  this 
network. 
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Whoisr  doa  dca.miJ.  <Retnrn> 

Defense  Inforitiatiori  Systems  Agency  (DCA-DOM) 

Drmain  Name;  DCA.MIL 

Administrative  Contact,  Technical  Contact,  Zone  Contact; 

Hostmaster  (hostmaster) 

HOSTMASTER0NIC . DDN . MIL 

(800)  365-DNIC  (703)  802- 

4535 

Record  last  updated  on  18-Sep-91. 

Domain  servers  in  listed  order: 

MS, SIC .DDN, MIL 

192.67.67.53 

•  A. 1S1.EDU 

26.3.0.103,  128,9.0.107 

C.MYSER.NST 

192.33.4.12 

TEKP.UMD.EDU 

128.8.10.90 

MS  .NAS A. <50 V 

128.102.16.10,  192.52.195.10 

AOS.BBL.MIL 

192.5,25.82 

Wbuld  yo«  like  to  see  the  known 

hosts  lihder  this  secondary  domain?  y 

There  are  80  known  hosts: 

AKTARES.DCA.MIL 

128.19.0.14 

BBLLATRIX.DCA.MJL 

128.19.0.5 

C4$D.  DCA.MIL 

26.8.0.76 

CmC’-BBK.DCA.MIL 

26.18.0.70 

CMMC-IMW , DCA . MIL 

26.29,0/76 

1  There  are  SS  more  matches.  Show  them?  n  <Retum> 

Nhois: 

As  you  can  see,  domain  searches  allow  you  to  identify  the  hosts  providing  name  service  for  the  domain,  as  well 
as  the  names  and  phone  numbers  of  the  administrative  and  technical  contacts  for  the  domain  (in  this  case,  the 
NIC  Hostmaster  group). 
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6.3.2  NIC/QUERY 

NIC/Query  is  a  browsing  service  that  allows  you  to  page  through  general  information  about  the  Defense  Data 
Network  (DDN).  Topics  included  under  NIC/Query  are  presented  in  a  numbered  menu.  All  the  services  of  the 
TACNEWS  program  arc  also  available  via  NIC/Query  for  the  sake  of  simpler  user  accessibility. 

The  program  is  largely  self-explanatory,  and  online  help  is  available  if  you  need  it.  You  do  not  need  a  login 
account  on  the  NIC  machine  for  access.  To  access  NIC/Query,  simply  open  a  TELNET  connection  to 
NIC.DDN.MIL,  and  then  type  nic  or  query,  as  shown  below. 


In  the  example  above,  the  user  asks  for  help  at  the  "NIC/Query;"  prompt.  A  submenu  is  presented  .so  he  can 
select  the  level  or  type  of  information  he  wishes  to  have  displayed. 


ttelnet;  ttlc.ddn.ioil  <ReEam> 

Trying...  Open 

WiC.DJJJI.MIX.  SurtOS  ... 

$ni.c  <itet:um> 

NJC/Query  V^r«ion;  1.4  Thu,  26  Sep  91  14:27:13 


Stop  output  ©very  24  lines'?  (fl]/N/#  of  lines)  y  <Tteturn> 

ROOT 

Use  NiC/Ouery  to  access  a  hierarchy  of  information  about  the  Defense 
JData  Uetwork  {DDN)  and  the  Network  Information  Center  (NIC)  using 
eiit^le  menus.  Bugs  to  BDG-ODERY^NIC.DDN.MIL. 

**  Note  that  a  carriage  return  is  required  after  every  command. 
Select  menu  item  1  for  help  using  this  program. 

1)  HELP  Introduction^  changes,  detailed  help,  help  summary. 

2)  'HHOIS  —  Directory  of  DDN  users, 

3)  H03TS  — "  Describes  DDN  hosts - 

4)  PROTOCOLS  Describes  DDN  protocols. 

5)  RPCS  —  Requests  For  Comments  technical  notes. 

6)  NIC  DOCUMENTS  **-  Docoments  available  from  the  NIC. 

7.  TACNBNS  —  TAOnev?c  program. 

ROOT:  Enter  a  menu#  (1-7},  or  a  comanand  ('?'  to  list), 

NIC/Ouery;  1  <Retum> 

HELP  —  Introduction,  changes,  detailed  help,  help  summary, 

1.  INTRODUCTION  *— <  An  introduction  to  the  NIC/Query  system, 

2.  CHANGES  Differences  from  the  old  version  of  NlC/Quety. 

3)  NOVICES  —  Detailed  help  for  new  users. 

4.  HELP  S0i®4ARY  Brief  description  of  NIC/Query  concepts  and 
commands. 

HELP:  Enter  a  menu#  (1  -  4),  or  a  command  ('?'  to  list). 
NiC/Query:  1  <Retam> 
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63.2.1  TACNEWS 

TACNEWS  is  a  NIC  online  service  that  offers  login  help  to  TAC  users.  It  also  offers  access  to  the  interactive 
TAC  locator  program  that  allows  you  to  find  the  three  TAC  phone  numbers  closest  to  a  phone  number  you  enter. 
TACNEWS  provides  a  mechanism  for  reading  the  DDN  Newsletters,  DDN  Management  Bulletins,  and  DDN 
Security  BuUetins.  Users  should  read  these  publications  regularly  to  stay  current  on  DDN  policies, 
announcements,  and  network  news  items. 

If  you  wish  to  have  newsletters  and  bulletins  delivered  online  to  your  network  mailbox,  send  a  message  to 
REGISTRAR@NIC.DDN.MIL  including  your  name  and  address  and  indicating  that  you  wish  to  be  on  the  online 
distribution  for  the  newsletters  and  bulletins. 

You  may  access  TACNEWS  by  logging  into  a  TAC  and  typing  tacnews.  Alternatively,  you  may  open  a 
TELNET  connection  to  NIC.DDN.MIL  from  a  local  host  to  read  TACNEWS,  as  shown  in  the  examples  on  the 
following  pages. 

TACNEWS  services  are  also  available  via  the  NIC/Query  program;  this  redundancy  allows  users  connecting  to 
the  NIC  via  TELNET  to  take  advantage  of  all  servicc.s  in  a  single  connection  session. 
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-  . 

TAC  Oseriri;  <U»0j:n0me>  <B«tuxn>  Enter  your  TAC  Username  here. 

Access  Code  ;  <acceas  Codey  Enter  your  TAC  Access  Code.  It  will  not 

echo  on  screen. 

Lo<jin  OK. 

TCP  Trying. .  .C^en 

Txrying  192.112.36.5  ... 
ccimecbed  to  NIC, ddk.mil. 

Escape  character  is  "‘3 '  . 

*  — .  DDK  Network  Information  Center  — 

*  For  TAC  news,  type:  TACNEWS  <Return> 

*  For  user  and  host  infoxnnation,  type:  WHOIS  <Return> 

*  For  NIC  information,  type:  NIC  <Return> 

* 

*  For  user  assistance  call  (800)  365-DNIC  or  (703)  602-4535 

*  Report  system  problems  to  ACTXON0NIC.DDN.MIL  or  call 

(703)  802-4535 

0  taenewe  <Retuea> 

TACnews  Version.*  (xx^x.xxx)  Thu,  26  Sep  91  14:30:14 
Stop  output  every  24  lines?  ({YJ/N/#  of  lines)  y  <Retum> 

1.  Announcements  —  Updated  ll-Jul-9l 

2.  TACs,  List  of  U.S.  TAC  Dial-Ins,  23K 

3.  Locator,  Finds  C.S.  tag  Dial-lns 

4.  Bur/Pac,  List  of  European /Pacific  TAC  Dial-lns,  ISK 

5.  Login,  Help  with  TAC  login,  6K 

6.  Newsletters,  DDN  —  updated  16-Sep-9l 

7.  Bulletins,  DDK  Management  —  Updated  16-Sep-91 
9,  Bulletins,  DDN  Security  —  Updated  16 -Sep- 91 

Type  a  menu  number  (1-8),  ?  for  options,  ’’HELP"  for  instructions. 
TACnewaJ  7  <Betuxn>  (After  teliing  the  TACNEWS  program  to  limit  each  display  page  to 

24  lines  and  seeing  the  menu  display,  user  elects  to  read  the  DDN 
Management  Builedns.) 

There  are  30  Bulletins  online.  The  latest: 

80  2i-Dec-90  REGISTRATION  OF  IP  NETWORK  NUMBERS 

81  9-Apr-9l  MTACs  Operational  with  Limited  Monitoring  and 

Control  Capability 

$2v  23-Apr-91  Corrected  MTACs  Operational  with  Limited 
Monitoring  and  Control  Capability 

Type  an  issue  number  (22-82),  ?  for  options,  or  HELP  for  full  help, 
TACnews:  82  <llet:um> 
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6.3.3  NIC  Kermit  Server 

For  PC  users  who  cannot  access  FTP  from  their  hosts,  the  NIC  has  an  anonymous  Kermit  server  available.  (A 
server  is  a  software  module  that  provides  a  service  to  users  or  user  programs  that  request  it.)  You  should  be 
familicTT  with  the  Kermit  file  uansfer  protocol  and  have  a  PC  communications  program  that  supports  that  protocol 
Before  you  attempt  to  transfer  documents  with  it. 

To  download  a  file  from  the  NIC  using  the  Kermit  server,  proceed  as  follows: 

1 .  Set  the  receive  packet  size  on  your  PC  Kermit  to  60. 

2.  Connect  to  NIC.DDN.MIL  (192.1 12.36.5)  through  a  TAC  or  Mini-TAC. 
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%  nic .  d(in  .mil  <Bat um> 

Trying  192.112.36.5  ... 

Connected:  ho  nic .ddn  .mil , 

Escape  character  is 

SunOS  UNIX  (nic) 

—  DDK  Network  Information  Center  — 

f'or  TAC  news^^  typer  TACNSWS  <return> 

*  For  user  and  host  information,  type:  WHOIS  <return> 

*  For  KIC  information,  type:  NIC  <return> 

* 

A ;For:  user  assistance  call  <800)  365-“3642  or  (800)  365~DNIC  or 

<703)  802-4535 

*  Report  system  problems  to  ACTIONgNiC.DDN.MIL 

NIC,  SunOS  Release  4.1,1  (NIC)  #1: 

Thu  Sep  26  14:11:08  1991  EST 

TACnews  Version:  (xxxx, XXX )  Thu,  26  Sep  91  14:30:14 
Stop  output  every  24  lines?  <iy3/N/#  of  lines)  y  <R«tum> 

1.  Announcements  —  updated.  ll-Jul-9l 

2.  TACs,  List  of  U.S,  TAC  Dial-Ins,  23K 

3.  Locator,  Finds  U.S.  TAC  Dial-Ins 

4.  Eur/Fac,  List  of  European /Pacific  TAC  Dial-Ins,  15K 

5.,  Login,  Help  with  TAC  login,  6K 

6. . Newsletters,  DDN  —  Updated  16-Sep-91 

7 .  Bulletins,  DDK  Management  —  Updated  16-Sep-91 

8.  Bulletins,  DDK  Security  —  Updated  16-Sep-$1 

Type  a  menu  number  (1-8),  ?  for  options,  "HELP"  for  instructions. 
TACnews  r 
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3.  Once  you  gel  the  NIC  login  prompt  (@),  change  the  T  C'  inicrcept  character  to  a  controby  (*y)  by 
issuing  the  following  TAC  command;  @i  25  <Return>.  Notice  that  you  must  type  the 
symbol  because  it  signals  the  TAC  that  you  arc  issuing  a  command. 

4.  Press  <Retum>  to  get  the  NIC  prompt  (@  is  now  the  NIC  prompt  symbol),  then  type 
Kermit<Retum>.  This  command  activates  the  Kcrmit  server  on  the  NIC. 

5.  Drop  back  to  your  PC  Kcrmit  and  get  the  Tile  that  you  want  from  the  NIC. 

6.  When  you  arc  finished,  type  "bye"  to  end  the  Kcrmit  session  on  your  PC. 

For  more  information  on  using  Kcrmit  through  a  TAC,  sec  the  files  KERMIT-tac-info  .  TXT  and 
KERMlT-NrcSERVER.TXT  in  the  NETINFO/  directory  on  the  NIC.DDN.MIL  host.  These  files  arc  available 
via  the  SERVICE  mail  server  (see  Section  6.3.5). 


6.3.4  NIC  Automated  Mail  Service 


SERVICE  is  an  automated  electronic  mail  system  provided  by  the  DDN  Network  Information  Center.  It  allows 
access  to  most  online  NIC  documents  and  information  via  electronic  mail. 


To  use  the  mail  service,  send  a  message  to  service@nic  .DDN . mil.  In  the  SUBJECT  field,  enter  the  type  of 
service  you  are  requesting,  followed  by  any  arguments  needed  to  further  define  your  request.  The  message  body 
is  normally  ignored;  however,  if  you  leave  the  SUBJECT  field  empty,  the  first  line  of  the  message  body  is  used 
as  the  request  If  your  request  involves  the  vansmission  of  large  files,  they  are  broken  into  smaller,  separate 
messages;  however,  a  few  files  are  too  large  to  be  sent  through  the  mail  system.  SERVICE  requests  are 
processed  automatically  once  a  day. 

The  following  services  are  currently  available.  Each  item  on  the  list  is  followed  by  an  example  of  a  subject  line 
for  requesting  that  service; 


HELP 

RFC  nnnn 

RFC  Index 

lEN  nnn 

NETINFO  XXX 

SEND  XXX 

HOST  XXX 


This  message;  a  list  of  current  services. 

Subj;  HELP 

nnnn  is  the  RFC  number. 

Subj;  RFC  822 

Retrieves  the  index  of  RFCs. 

Subj;  RFC  INDEX 

nnn  is  the  lEN  number  or  the  word  INDEX. 

Subj;  IEN828 

XXX  is  a  file  name  or  the  word  INDEX. 

Subj;  NETINFO  DOMAlN-TEMPLATE.TXT 

XXX  is  a  fully  .specified  file  name. 

Subj;  SEND  lETF/lWG-SUMMARY 

Subj;  SEND  INTERNET-DRAFTS/DRAFT-IETF-IWG-BGP-OO.TXT 

Returns  information  about  host  xxx. 

Subj;  HOSTNIC.DDN.MIL 
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INDEX 


Returns  the  master  list  of  available  index  files. 


FYI  nnn  Returns  the  specified  FYI  document,  where  nnn  is  the  FYI  number  or  the 

word  INDEX. 

Subj:  FYI  1 

WHOIS  XXX  Returns  information  about  xxx  from  the  WHOIS  service. 

Use  "WHOIS  HELP"  for  information  on  using  WHOIS. 

Subj:  WHOIS  MCCOLLUMB 


6.4  Documents  Published  by  the  NIC 

The  NIC  compiles  and  publishes  online  versions  of  the  documents  listed  below.  The  file  nic-pubs.ui  in  the 
netinfo  directory  on  N1C.DDN.MIL  contains  an  expanded,  annotated  list  of  publications  that  are  currently 
available  online.  Many  of  these  documents  are  deposited  at  the  Defense  Technical  Information  Center  (DTIC), 
where  they  are  available  to  military  network  users.  Hardcopies  of  some  documents  and  RFCs  arc  available  from 
the  former  NIC,  SRI  Internationa!  in  Menlo  Park,  CA.  Contact  SRI  for  prices  and  ordering  information. 
Ordering  instructions  are  also  provided  in  the  online  fde  nic-pubs.txt.  You  may  contact  the  NIC  to  confirm 
document  availability  or  to  learn  about  newly  available  documents. 

THE  DDN  NEW  USER  GUIDE 

The  document  you  are  reading.  A  brief  guide  to  DDN  network  tools  and  services  designed  to  introduce 
users  to  the  network.  The  Guide  is  available  online  as  net  inf  o/nug .  doc. 

THE  NETWORK  PROTOCOL  IMPLEMENTATIONS  AND  VENDORS  GUIDE 

The  Vendors  Guide  lists  software  and  hardware  implementations  of  the  DDN  protocols,  based  upon 
information  supplied  by  vendors.  This  document  is  for  informational  purposes  only.  Entry  on  this  list 
docs  not  imply  endorsement.  Available  online  as  netinf o/vendors-guide . doc. 


RFCs 

Requests  for  Comments,  or  RFCs,  are  network  technical  notes,  each  of  which  is  identified  by  a  unique 
number.  The  RFCs  arc  available  online  as  rfc/rfcnnnn .  txt  (where  nnnn  is  the  RFC  number). 
Hardcopies  are  available  by  subscription  from  SRI  International,  Menlo  Park,  CA. 


6.5  Online  Reference  Files  at  the  NIC 

Several  other  public  files  on  the  NIC.DDN.MIL  host  are  of  special  interest  to  network  users.  The  pathnames  and 
brief  descriptions  of  some  of  these  files  are  listed  below.  You  may  retrieve  these  files  via  FTP  (using 
USERNAME  anonymous,  PASSWORD  guest).  Sec  Section  5.1.2  for  FTP  instructions.  You  may  also  obtain  the 
files  by  ela:tronic  mail  using  the  NIC  Mail  SERVICE  program  (sec  Section  6.3.5)  or  via  the  NIC  Kcrmit  Server 
(sec  Section  6.3.4). 

netinf o/mil-nsc .txt 

Node  Site  Coordinators  for  each  node  or  PSN  on  the  MILNET. 
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uetinf o/hosts .txt 

Official  Intemei  DoD  Hostname  Table,  which  lists  the  names  and  numbers  of  domains,  networks, 
gateways,  and  hosts  on  the  DoD  Internet.  It  is  designed  to  be  machine  readable.  From  this  file,  two 
additional  files  are  generated: 

hosts .  txt .  z,  a  UNIX  compressed  version  of  the  hosts.txt  file,  and  mil-hosts  .  txt,  a  complete 
listing  of  the  MILNET  hosts  in  hosts.txt. 


net inf o/ host -location . txt 

Addresses  of  MILNET  hosts  locations,  sorted  geographically. 


net info /host server-instructions .txt 

Instructions  for  using  the  NIC’s  hostname  server  to  uansfer  the  host  table. 


netinf o/mil-host-administrators-a-1 . txt 

Military  Host  Administrators  "A"  through  ’L,"  sorted  by  hostname. 


netinf o /mil-host -administrate rs-m-z . txt 

Military  Host  Administrators  "M "  through  "Z,"  sorted  by  hostname. 


netinf o/nic-pubs . txt 

Information  about  publications  available  from  the  NIC. 


netinf o/nug. doc 

Online  version  of  this  document. 


netinfo/what-the-nic-does . txt 

General  information  regarding  NIC  services. 


netinf o/user-template . txt 

Template  for  users  who  want  to  be  registered  in  the  WHOIS  database. 


netinf o/tac-location . txt 

Geographic  location  of  each  TAC.  This  file  is  useful  for  locating  the  TAC  closest  to  you. 


netinf o/usa-tac-phones . txt 

Phone  numbers  for  TAGS  within  the  fifty  states. 


netinfo/foreign-tac-phones .txt 

Phone  numbers  for  TACs  outside  the  U.S. 


netinf o/cioiaaiii—uuiitai.-t  >  .  1^1 

Name,  mailbox,  and  phone  number  for  each  domain  contact  registered  with  the  NIC. 
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netinf o/network-contacts . txt 

Name,  mailbox,  and  phone  number  for  each  nciwork  contact  registered  with  the  NIC.  The  NIC  registers 
all  IP  networks  and  designates  a  contact  for  each  one. 

net inf o/OOnet info-index .txt 

Name  and  a  brief  descrifHion  of  each  tile  available  in  the  publicly  accessible  NETINFO  directory  on  the 
NIC  host 


netinf o/kermit-info . txt 

General  information  on  the  Kermit  program. 


netinf o/kermit-nicserver . txt 

Specific  information  on  the  NIC  Kermit  server. 


netinf o/kermit-tac-info . txt 

Specific  information  on  TAC  usage  with  Kermit. 


protocols/gosip-vl .doc 

Version  1  of  the  GOSIP  document. 


protocols/gosip-order-info .txt 

Descriptions  of  GOSIP-related  documents  and  information  on  how  to  obtain  them. 


rfc/ rfcnnnn.txt,  where  nnnn  is  the  RFC  number 

Network  technical  notes,  known  as  Requests  for  Comments,  or  RFCs,  are  online  in  ihc  directory  RFC: 
on  the  NIC.DDN.MIL  host.  New  RFCs  are  announced  to  network  users  via  an  online  distribution  list 
maintained  by  the  NIC.  Individuals  who  want  to  be  added  to  the  RFC  notification  list  should  send  a 
message  to  rfc-re:}UEST@nic. ddn.mil. 


rf c/rf c-index . txt 

Lists  all  RFCs  in  reverse  numerical  order,  with  the  most  recent  RFC  at  the  top.  Includes  author,  title, 
date  of  issue,  RFC  number,  number  of  hardcopy  pages,  number  of  online  bytes,  format  (ASCII  text  or 
PostScript),  and  information  regarding  other  RFCs  that  make  a  given  RFC  obsolete  or  update  it  Notes 
whether  an  RFC  is  also  an  FYI. 


fyi/fyinn.txt,  where  nn  is  the  FYI  number 

(FYI  =  For  Your  Information)  General  information  technical  notes  issued  as  special  RFCs. 


f yi/ f yi-index . txt 

Mirror  of  the  RFC  Index,  but  listing  only  FYIs.  Notes  the  corresponding  RFC  number  for  each  FYI. 
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SECTION  7.  SECURITY  CONSIDERATIONS  AND  NETWORK  CONDUCT 


7.1  Requirements  for  Legitimate  DDN  Access 

Only  authorized  users  engaged  in  U.S.  Government  business  or  applicable  research  or  those  who  arc  directly 
involved  in  providing  operations  or  system  support  for  Government-owned  or  Government-sponsored  computer 
communications  equipment  may  use  the  DDN.  The  network  is  not  available  for  use  by  the  general  public,  nor  is 
it  intended  to  compete  with  comparable  commercial  netwcH-k  services.  Users  of  the  DDN  must  not  violate 
privacy  or  other  applicable  laws  and  should  not  use  the  networks  for  advertising  or  recruiting  purposes  without 
the  express  permission  of  the  Defense  Information  Systems  Agency. 

Unauthorized  use  of  the  DDN  is  illegal.  Persons  who  break  into  Government  networks  or  use  Government 
computer  resources  without  authorization  will  be  prosecuted.  Hosts  that  permit  this  type  of  access  will  be 
disconnected  from  the  network. 

[NOTE:  DISA  reserves  the  right  to  discontinue  DDN  access  to  any  user(s)  who  arc,  in  DISA’s 
opinion,  not  conducting  legitimate  Government  business/activity.  DISA  will  send  one  letter  of 
warning  through  command  channels  (via  registered  mail)  to  any  user  found  to  be  conducting 
illegitimate  business.  Should  the  illegitimate  activity  continue,  DISA  will  terminate  the  user’s 
access  without  additional  notice.] 


7.2  Security  Considerations  and  Guidelines  for  Network  Conduct 

Several  levels  of  responsibility  provide  security  for  the  DDN.  At  the  most  basic  level,  individual  users  should 
take  precautions  to  minimize  the  chances  that  their  accounts  could  be  compromised.  They  bear  the  primary 
responsibility  for  the  protection  of  their  information.  If  more  users  were  to  lake  this  responsibility  seriously  and 
act  accordingly,  the  majority  of  computer  security  breaches  would  not  occur. 

You  can  best  protect  your  own  files  via  careful  password  management  Do  not  use  an  unmodified  word  from 
any  language;  this  includes  words  spelled  backward.  Your  Host  Administrator  should  have  suggestions  as  to 
proper  password  choices. 

Follow  these  recommendations  to  reduce  the  possibility  of  compromise  of  your  computer  system  or  files: 

•  Do  not  leave  your  terminal  logged  in  and  unattended. 

•  Know  your  operating  system’s  protection  mechanisms  and  make  sure  that  all  your  files  arc  set  up 
with  appropriate  protection  modes. 

•  Choose  a  password  that  meets  the  guidelines  of  your  site  or,  at  minimum,  one  that  is  not  an 
unmodified  word  from  any  language.  A  simple  modification  involves  prefixing  a  word  with  a 
numeral  (or  several  numerals). 

•  Change  your  password  as  required  by  your  site  or,  at  minimum,  every  six  months. 
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•  Do  not  write  your  password  down  on  paper  or  record  it  in  a  file  stored  on  any  computer  disk, 
floppy  disk,  PC,  or  magnetic  tape. 

Users  have  the  primary  responsibility  for  protecting  their  own  accounts,  but  several  other  people  have  roles  in 
providing  system  and  network  security. 

Host  Administrators  are  generally  responsible  for  ensuring  that  their  host  sites  maintain  a  reasonable  level  of 
protection  from  the  possibility  of  network  compromise.  They  must  act  as  liaisons  with  the  DDN  Network 
Security  Officer  (DDN  NSO),  the  Security  Coordination  Center  (SCC),  vendors,  law  enforcement  bodies,  and 
other  appropriate  agencies  to  resolve  any  outstanding  security  problems  and  prevent  their  recurrence.  They  are 
responsible  for  the  enforcement  of  all  DDN  policies  at  their  site. 

The  NSO  recommends  security  policy  affccung  the  DDN  and  is  responsible  for  its  general  enforcement.  The 
NSO  also  works  closely  with  Host  Administrators  to  resolve  network  and  related  computer  security  problems  or 
incidents  affecting  their  sites. 

The  DDN  Security  Coordination  Center  is  located  at  the  NIC.  The  SCC  acts  as  a  liaison  between  Host 
Administrators  and  the  NSO  and  between  MILNET  sites  and  Internet  security  response  centers  such  as  the 
Computer  Emergency  Response  Team  (CERT). 

If  you  suspect  that  a  computer  break-in  has  occurred,  you  should  contact  your  Host  Administfator.  The  flow  of 
security  incident  reporting  should  be  from  the  end  user  to  the  Host  Administrator  or  other  appropriate  individual, 
who  then  determines  if  the  problem  is  local  or  network  related.  If  the  problem  is  network  related,  the  Host 
Adminisualor  should  refer  the  problem  to  the  appropriate  site  as  noted  in  DDN  Security  Bulletin  9003  [7].  In 
such  cases,  the  Host  Administrator’s  first  step  is  to  call  the  MILNET  Monitoring  Center  for  your  area.  Phone 
numbers  for  the  Monitoring  Centers  are  found  in  Section  9.2. 


7.3  Network  Conduct 

The  network  environment  is  somewhat  different  from  the  traditional  workplace.  Rules  for  proper  conduct  arc 
gradually  emerging  to  fit  this  new  environment.  The  rules  and  guidelines  presented  here  relate  to  four  areas; 

•  passwords 

•  file  protection 

•  plagiarism 

•  network  mail 


7.3.1  Passwords 

Since  use  of  the  network  is  restricted,  passwords,  access  codes,  and  TAC  cards  should  never  be  shared.  Change 
your  host  login  password  regularly  and  report  any  unauthorized  use  of  passwords  to  your  Host  Administrator. 
MILNET  TAC  cards  and  records  of  host  Userids  and  Access  Codes  should  be  kept  in  a  safe  place.  Users  should 
be  familiar  with  and  follow  local  security  guidelines. 
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7.3.2  File  Protection 

Most  operating  systems  have  a  method  of  protecting  files  from  network  read  and  write  access.  TTic 
recommended  file  protection  default  for  directories  is  "no  read  and  no  write  to  outside  users."  If  your  files  arc 
protected  in  this  way,  you  can  still  make  them  accessible  to  outside  users  over  the  network,  but  you  must  take 
action  to  reset  file  and  directory  protections  to  make  this  happen. 

As  a  new  user,  you  should  find  out  what  the  protection  default  is  on  your  host  and  ensure  that  files  you  don’t 
want  accessible  to  other  users  are  protected.  Ask  you  Host  Administrator  about  default  file  and  directory 
protection  settings  and  for  instructions  on  protccting/unprotccting  files. 


7.3.3  Plagiarism 

Even  if  a  file  is  unprotected,  you  are  not  free  to  copy  or  read  it  without  first  asking  pemrssion.  It  is  as 
inappropriate  to  read  online  mail  or  browse  through  online  files  without  pcrmi.ssion  as  it  would  be  to  read  a 
colleague’s  hardcopy  mail  or  rummage  around  in  his  desk. 

Electronic  plagiarism  of  another’s  work  is  just  as  unethical  as  plagiarism  by  any  other  means.  Be  sure  to  credit 
users  whose  work  you  cite  or  whose  ideas  you  express.  Copyright  laws  must  also  be  carefully  observed  and 
obeyed. 

It  is  easy  and  convenient  to  exchange  code  and  programming  across  the  network.  Many  code  developers  arc 
extremely  generous  in  sharing  their  work.  Even  so,  before  copying  or  using  someone  else’s  code,  be  sure  to  get 
permission  from  the  developer  or  maintainor  and  credit  the  source  in  your  documentation.  Under  no 
circumstances  should  programming  or  code  from  anywhere  on  the  network  be  used  (verbatim  or  edited) 
commercially  without  the  owner’s  explicit  permission. 


7.3,4  Mail 

Electronic  mail  is  a  powerful  communication  tool  that  must  be  used  with  care.  The  following  guidelines  will 
help  you  avoid  offending  other  users  and  overloading  the  network. 

It  is  easy  to  forward  mail  you  receive;  but  the  writer  may  never  have  intended  that  anyone  else  read  the  message. 
For  this  reason,  it  is  wise  to  check  with  the  sender  before  forwarding  a  private  message  of  any  significance. 

The  DDN  is  a  business  environment,  so  try  to  keep  your  me,ssagcs  short  and  to  the  point.  It  is  easy  to  send  off 
a  quick  message,  only  to  realize  a  moment  later  that  you  needed  to  say  more.  To  avoid  this,  organize  your 
thoughts  and  send  a  single  message  rather  than  several  incomplete  ones.  This  will  make  your  mail  far  more 
useful  to  the  recipients,  and  minimize  the  load  on  the  network. 

Online  mail  tends  to  change  a  person’s  style  of  communication.  Sending  mail  is  so  quick  that  it  is  tempting  to 
send  your  immediate  reaction  to  a  mcs.sage  rather  than  a  more  considered,  appropriate  response.  Do  not  use 
derogatory  or  inappropriate  language  in  messages,  c.spccially  those  sent  to  discussion  groups.  Keep  in  mind  that 
no  one  likes  to  be  offended  or  embarrassed  by  careless  comments. 

Finally,  if  you  reguiariy  send  mail  to  a  large  group,  learn  how  to  create  a  mailing  list.  Otherwise,  each  recipient 
must  scroll  through  a  list  of  the  mailboxes  of  all  other  recipients  as  a  part  of  the  message  header. 
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Remember,  use  of  ihe  network  is  a  privilege,  ll  is  your  duly  to  use  die  network  resjsonsibly  as  ii  was  intended 
to  be  used  and  to  obey  general  network  policies.  In  rcluni,  the  network  gives  you  access  to  many  iixils  and  to 
an  online  community  of  other  network  users. 


7.4  Additional  Security  Information 

Host  and  system  administrators  arc  encouraged  to  order  "DC AC  .310-Pl  15-1,  DDN  Security  .Mtuiagenicnt 
procedures  for  Host  Administrators,'’  May  1991.  Copies  may  Ik:  obtained  in  die  follow  ing  manner: 

1.  Government  agencies  may  request  a  publication  by  submitting  a  DC'aV  Form  1 17,  Publication  of 
Blank  Form  Request,  to  the  Director.  DISA,  A'lTN:  BIAK,  Arlington,  VA  22204-2199. 

2.  Other  organizations  may  request  a  publication  by  submitting  a  letter  with  appropriate  jusiificaiion  to 
the  address  given  above.  The  DCA  Form  117  is  used  by  (.'overnment  agencie.s  only. 
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SECTION  8.  NETWORK  CONCEPTS  OVERVIEW 


8.1  Introduction 

In  the  following  paragraphs,  we  provide  some  general  information  about  topics  such  as  usage-sensitive  billing, 
network  gateways/concentrators,  network  addresses,  the  Domain  Name  System,  and  GOSIP.  Although  most  new 
DDN  users  will  not  be  actively  involved  in  any  of  the  areas  covered  in  this  section,  they  do  involve  concepts 
you  should  become  familiar  with,  since  they  arc  important  to  all  DDN  users. 


8.2  Usage-Sensitive  Billing 

The  usage-sensitive  billing  system  was  implemented  on  the  DDN  to  distribute  costs  more  equitably,  based  on 
actual  use  of  network  resources.  The  tariff  structure  is  designed  to  support  cost  recovery  so  that  the  amount 
recovered  from  each  subscriber  is  proportional  to  that  subscriber’s  use  of  network  resources. 

Generally  speaking,  all  hosts  and  dedicated  terminals  arc  charged  a  basic  monui!/  rate.  Users’  network 
connections  are  charged  on  a  per-minute  basis.  A  charge  is  also  levied  for  each  kilopacket  of  traffic  sent  by 
each  host  or  terminal  user.  Charges  reflect  peak-versus-nonpeak  usage  and  precedence  level. 

Monthly  bills  are  sent  to  designated  representatives  of  the  military  branches  as  well  as  to  other  Government 
agencies.  The  bills  are  then  distributed  according  to  locally  established  policies.  That  is,  a  packet  of  several 
bills  might  be  sent  to  a  site  and  then  distributed  to  other  individuals  by  the  billing  Point  of  Contact  (POC)  at  that 
site. 

It  is  rare  for  an  individual  user  to  see  a  bill.  However,  you  should  be  aware  that  your  use  of  the  DDN  docs 
affect  costs  charged  back  to  your  service  and,  perhaps,  to  your  host  site.  Therefore,  all  users  should  be 
conscientious  in  conforming  to  host-site  usage  policies. 

The  NIC  provides  a  Usage  Sensitive  Billing  (USB)  Service  Desk  to  help  answer  inquiries  from  DDN  u.scrs  or 
user  organizations  regarding  the  uaffic  and/or  connection  charges  shown  on  their  billing  reports.  USB  Service 
Desk  personnel  are  available  by  phone  Monday  through  Friday  from  9:00  a.m.  to  5:00  p.m..  Eastern  time. 
Electronic  mail  is  accepted  24  hours  per  day. 

Service  Desk  personnel  have  access  to  many  sources  of  DDN  usage  information.  They  arc  available  to  answer 
general  questions  as  well  as  site-  or  user-specific  questions.  In  the  event  a  question  or  inquiry  goes  beyond  the 
scope  of  the  Service  Desk,  the  caller  can  be  referred  to  a  more  appropriate  contact  or  agency. 

Use  the  following  information  to  contact  the  USB  Service  Desk: 

By  Electronic  Mail:  BILLING@NIC.DDN.MIL 

By  Phone:  1  (800)  365-DNIC  (inside  the  U.S.) 

1  (703)  802-4535  (outside  the  U.S.  or  in  the  Washington  D.C.  area) 

By  U.S.  Mail:  DDN  Network  Information  Center 

ATTN:  Usage-Sensitive  Billing  Desk 
142(X)  Park  Meadow  Drive,  Suite  200 
Chantilly,  VA  22021 
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8.3  Network  Concentrators 

Networks  can  be  categorized  according  to  size  or  geographic  distribution,  and  they  can  be  referred  to  as  local 
area  networks  (LANs)  or  wide  area  networks  (WANs).  A  LAN  might  serve  a  single  office,  a  building,  or  an 
entire  military  site.  WANs  are  typically  cross-country  networks  employing  technologies  such  as  satellites  or  long 
distance  land  lines;  they  can  serve  large  geographic  areas  such  as  military  installations  located  throughout  the 
world.  The  DDN  Ls  a  WAN  that  reaches  all  major  DoD  installations  worldwide. 

To  expand  computer  communications  not  only  across  geographic  distances,  but  also  across  different  networking 
technologies,  gateways  are  used  to  connect  networks  together  into  internetworks  or  "internets."  The  DDN  is  pan 
of  an  IP-based  internetwork,  known  to  DDN  users  as  "the  intemeu" 

The  use  of  gateway  concentrators  as  a  method  of  connecting  to  the  DDN  is  a  relatively  new  trend.  Gateway 
concentrators  enable  LANs  and  hosts  at  military  installations  to  connect  to  the  DDN.  Concentrators  lessen  the 
need  for  individual  host  connections  without  limiting  local  users’  access  to  full  DDN  service. 

Gateway  concentrator  use  increased  when  DISA  limited  the  number  of  PSN  ports  that  would  be  available  to 
connect  hosts  directly  to  the  DDN.  This  limitation,  coupled  with  the  long  lead  time  required  for  direct  host 
connections,  lent  impetus  to  the  establishment  of  gateway  concentrator  programs  for  the  military.  Currently,  the 
Air  Force  and  the  Army  have  concentrator  programs  to  fulfill  their  Icmg-haul  data  communication  requirements. 
These  programs  have  become  their  primary  method  of  connecting  unclassified  computer  systems  to  the  DDN. 

Gateway  concentrators  provide  a  number  of  advantages  for  connecting  installations  to  the  DDN; 

•  Greater  Connection  Capacity 

With  the  installation  of  a  gateway  concentrator  at  a  local  site,  the  number  of  hosts  that  can  be 
connected  to  the  DDN  is  no  longer  limited  by  the  number  of  ports  available  on  a  PSN.  Instead, 
many  hosts  can  be  connected  to  a  concentrator,  and  the  total  amount  of  traffic  they  pass  to  the 
DDN  is  accommodated  by  the  connection  between  the  gateway  conccnu-aior  and  the  N’lLNET  PSN 
to  which  it  is  attached. 

•  Quick  Connection 

The  gateway  concenuator  program  was  designed  to  allow  multiple  hosts  to  access  a  single  DDN 
port  simultaneously.  Computers  at  an  installation  that  requires  uncla.ssificd  worldwide 
communication  will  be  connected  to  the  Internet  automatically  because  their  local  networks  arc 
attached  to  the  Internet  via  the  concentrator.  Thus,  these  hosts  will  not  require  direct  connections  to 
DDN  ports.  This  configuration  enables  the  various  military  services  (e.g..  Air  Force,  Army)  to 
manage  their  host  connections  directly  and  to  avoid  the  long  wail  for  individual  host  connections  to 
DDN  ports. 

•  Lower  Cost  Per  Host 

Because  of  the  DDN  usage-sensitive  billing  system  sU'ucturc,  the  gateway  concentrator  programs 
reduce  costs  for  DDN  connection.  With  the  iaslallation  of  a  gateway  conccnuaior,  the  charges  for 
initial  host  connections  are  reduced,  as  the  .service  is  charged  only  once  for  the  initial  connection  of 
the  concentrator  itself  rather  than  for  each  individual  host  connection.  In  addition,  traffic  between 
local  hosts  on  the  network  behind  a  gateway  concentrator  will  not  be  billed  because  such  traffic  will 
not  travel  across  DDN  facilities. 
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The  Air  Force  has  a  help  desk  ai  the  Internet  Control  Center  (INCC)  U)  aid  conccnuaior  users  in  accessing  the 
DDN: 


AHNCC@SERVER.AF.MIL 

Headquarters  Standard  Systems  Ccntcr/AQFC 

Building  857,  Room  200A 

Gunter  Air  Force  Base,  AL  361 14-6343 

(205)  4I6-577I,  (205)  416-5861;  (DSN)  596-5771,  596-5861 


8.4  Network  Addressing 

The  network  address  is  the  official  numeric  address  of  a  host,  TAC,  or  gateway  (as  opposctl  to  the  official  name 
by  which  these  entities  are  addressed).  Network  addresses  take  the  format  "nnn.nnn.nnn.nnn  "  (dotted  decimal 
format),  where  nnn  represents  an  up  to  3-digit  decimal  identifier  from  0  through  255,  and  each  numeric 
component  is  separated  from  the  next  with  a  period.  Each  decimal  pan  represents  one  octet  of  a  32-bit  network 
address.  The  standard  Internet  address  is  divided  into  two  parts;  a  network  part  and  a  local  host  pan.  Based  on 
this  two-part  division,  three  classes  of  Internet  addresses  have  been  defined:  Class  A,  Class  B,  and  Class  C. 


CLASS  A  Network  Addresses 

Class  A  network  addresses  have  the  following  characteristics: 

•  Composed  of  a  1-byte  network  address  and  a  3-byic  local  address. 

•  The  highest-order  bit  of  the  (1-byte)  network  address  is  set  to  0. 

•  Therefore,  the  first  (or  network  address)  byte  of  a  CLASS  A  address  must  be  in  the 
range  from  0  to  127. 

•  Consequently,  CLASS  A  could  have  as  many  as  128  networks  with  2^  (16,7  ;  ,216)  hosts 
on  each  of  these  networks. 

All  directly  connected  MILNET  hosts  are  on  network  26,  which  is  a  Class  A  network. 

For  MILNET  hosts, 

•  the  first  part  of  the  address  is  the  network  number  (26); 

•  the  second  part  is  the  physical  port  number  on  the  host’s  PSN; 

•  the  third  part  is  the  logical  port  number  (normally  zero  for  MILNET  hosts); 

•  the  fourth  part  is  the  number  of  the  PSN  to  which  the  host  is  connected. 

Therefore,  a  host  with  the  address  26.31.0.73  is  on  network  26  (the  number  assigned  to  the  MILNET)  and  js 
attached  to  port  31  on  PSN  73. 


CLASS  B  Network  Addresses 

Class  B  network  addresses  have  the  following  characteristics: 

•  The  two  high-order  bytes  of  the  Internet  address  contain  the  network  number,  while  the 
two  low-order  bytes  contain  the  local  host  number. 
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•  The  highest  order  bits  are  set  to  10,  which  means  that  the  first  byte  must  be  a  number  in 
the  range  128  to  191. 

•  Consequently,  CLASS  B  could  have  as  many  as  16,384  networks  with  2“  (65,536)  hosts 
on  each  of  these  networks. 


CLASS  C  Network  Addresses 

Class  C  network  addresses  have  the  following  characteristics; 

•  The  network  number  is  contained  in  the  three  high-order  bytes  of  the  Internet  address, 
while  the  local  host  address  is  represented  in  the  single  low-order  byte. 

•  The  three  highest-order  bits  of  the  network  address  are  set  to  110. 

•  Therefore,  the  first  byte  must  be  in  the  range  192  to  233. 

•  Consequently,  CLASS  C  could  have  as  2,097,152  networks  with  2*  (256)  hosts  on  each  of 
these  networks. 

The  Internet  Registry  (IR)  at  the  DDN  NIC  assigns  the  network  portion  of  an  address  to  a  network.  The  local 
network  coordinator  for  a  specific  host  assigns  the  local  portion  of  that  host’s  network  address. 

Here  are  some  examples  of  how  each  type  of  network  number  looks: 

Class  A;  26.31.0.73  26.0.0.0 

Class  B;  128.18.1.1  128.18.0.0 

Class  C:  192.67.67.20  192.67.67.0 

(NOTE:  A  network  address  is  different  from  a  user’s  address.  The  term  ’’user  addrc.ss"  refers 
to  aperson’s  electronic  mailbox,  such  as  henry@nic.ddn.mil.] 


In  addition  to  the  three  classes  defined  above,  a  class  of  addresses  whose  three  highest  order  bits  arc  1 1 1  has 
been  defined.  It  is  currently  in  limited  use.  This  class  is  sometimes  referred  to  as  "CLASS  D."  Figure  8-1  on 
the  next  page  graphically  represents  the  three  major  Internet  address  classes. 
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Figure  8-1.  Internet  Address  Classes 
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8.4.1  Finding  Network  Address  Information 

The  WHOIS  database  at  the  NIC  contains  POC  information  for  every  network  the  IR  (Internet  Registry) 
assigns;  however,  it  may  not  contain  information  for  every  host  on  a  network.  Therefore,  remember  to  search  on 
the  network  portion  of  the  address  rather  than  the  complete  address  when  you  arc  using  the  WHOIS  program  ir> 
obtain  information  on  a  host. 

For  example,  the  Class  C  address 


192.112.36.70 


is  not  in  the  database,  but  searching  on 


192.112.36.0 

shows  you  information  for  LOCALNET.  When  using  WHOIS  to  find  the  POC  information  for  a  network,  set 
the  local  portion(s)  of  the  address  to  zero.  (See  Section  6.3. 1.3  for  an  example  of  using  WHOIS  to  search  for  a 
network  address.) 


8.4.2  Obtaining  Network  Addresses 

DISA  a,  signs  all  MILNET  network  addresses  (Class  A,  network  26),  and  the  MILNET  Manager  must  approve 
any  chtmges  to  or  deletions  of  MILNET  network  addresses. 

The  N  C  assigns  all  other  Class  B  and  C  network  addresses.  Requests  to  obtain  an  official  Class  B  or  C  number 
or  to  n.akc  changes  to  hosts  registered  with  these  addresses  should  be  directed  online  to 
HOSTl  ASTER@NIC  .DDN.MIL.  To  arrange  for  a  hardcopy  application,  call  the  NIC  at  1  (800)  365-DNIC. 
Applic  itions  can  also  be  requested  through  the  SERVICE  mail  server  (.sec  Section  6.3.5). 


8.4.3  Knowing  Your  Network  Address 

Each  user  should  know  the  network  address  of  hi.s/hcr  host.  It  is  c.spccially  important  to  know  your  host’s 
addre'..>  if  you  use  a  TAC  or  Mini-TAC  becau.se  you  will  have  to  enter  Uic  address  as  part  of  the  TAC  login 
scqueii  ;e.  Your  host  addres-  is  often— but  not  always— the  addrc.ss  printed  on  your  TAC  card  by  the  label 
AUTHi)RIZING  HOST.  Even  if  you  have  a  script  file  or  program  that  enters  this  information  for  you  as  you 
log  in,  Jeam  your  address  so  you  can  tell  it  to  the  NIC  or  the  MILNET  Monitoring  Center  if  you  call  them  about 
a  login  problem. 


8.5  The  Domain  Name  System 

Until  the  mid-1980s,  a  DON  host  could  find  data  on  hostnamc-to-nctwork-address  translation  solely  through  the 
use  of  a  file  called  the  host  table  which  was  generated  at  the  NIC. 

The  host  table  contained  the  name  and  network  address  of  every  host  that  was  registered  with  the  NIC. 
Individual  host  sites  had  to  transfer  and  install  new  copies  of  the  host  table  regularly  in  order  to  have  correct 
host  addressing  information.  The  host  table  had  to  be  updated  frequently  to  enable  mail  and  other  data  to  be 
sent  back  and  forth  across  the  Inicnicl. 
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As  time  went  on,  however,  the  number  of  hosts  listed  in  the  host  table  became  so  large  that  the  file  was  difficult 
to  maintain  efficiently,  as  well  as  difficult  and  time-consuming  for  sites  to  transfer.  As  an  alternative  to  the  host 
table  file,  the  Domain  Name  System  (DNS)  was  developed.  Currently,  the  NIC  maintains  data  for  both  the  host 
table  and  the  DNS.  The  host  table  listing  is  an  extremely  restricted  subset  of  the  hosts  registered  in  the  Domain 
Name  System. 

In  a  nutshell,  the  DNS  is  a  way  of  administratively  grouping  hosts  into  a  hierarchy  of  authority.  The  DNS 
allows  addressing  information  to  be  widely  distributed  and  updated  locally,  which  results  in  more  efficient  data 
retrieval  and  maintenance.  Complete  conversion  to  the  DNS  will  eliminate  the  need  for  one  site  to  maintain  a 
centralized  table  of  names  and  addresses. 

Under  the  DNS,  host  name  and  address  information,  along  with  other  data,  is  distributed  throughout  the  network 
in  a  hierarchical  scheme.  At  the  top  of  the  hierarchy  are  the  root  servers  that  contain  information  about  the 
top-level  and  second-level  domains.  At  the  bottom  of  the  hierarchy  arc  the  individual  hosts. 

Each  domain  within  the  DNS  must  have  two  hosts  that  provide  name  service  for  it,  which  means  that  these  hosts 
must  run  programs  called  name  servers.  When  queried  by  programs  known  as  resolvers  (located  cm  individual 
hosts),  these  name  servers  provide  name  and  address  information  to/for  the  particular  hosts  within  their  domain. 
(The  hosts  themselves  arc  called  servers,  even  though,  technically,  a  server  is  a  program.)  Each  server  contains 
a  subset  of  Internet  domain  information.  If  a  query  arrives  at  a  server  that  docs  not  have  address  information  for 
a  particular  host,  it  will  be  able  to  direct  the  query  to  the  server  where  the  information  resides. 

Queries  regarding  specific  hostnames  usually  begin  by  asking  a  server  that  knows  about  the  top-level  domain 
under  which  that  host  fails.  Currently,  most  domains  on  the  Internet  are  registered  within  one  of  the  following 
top-level  domains: 

•  COM  for  commercial  institutions 

•  EDU  for  educational  institutions 

•  GOV  for  non-military  government  agencies  and  organizations 

•  MIL  for  military  agencies  and  organizations 

•  NET  for  backbone  networking  entities 

•  ORG  for  non-profit  institutions. 

Top-level  domains  are  also  registered  fw  countries— c.g.,  BE  for  Belgium  and  FI  for  Finland.  The  NIC  registers 
information  for  only  the  top  level  of  these  country  domains.  Lower-level  domains  arc  registered  within  the 
country. 

Hosts  registered  on  the  Internet  must  have  names  that  reflect  the  domains  under  which  they  are  registered.  Such 
names  are  called  Fully  Qualified  Domain  Names  (FQDNs)  and  include  all  domains  of  which  the  host  is  a  part. 
For  example,  NIC.DDN.MIL  is  the  name  of  the  NIC’s  main  host.  The  hostname  NIC.DDN.MIL,  when  taken 
piece  by  piece,  gives  information  about  the  host  itself.  A  hosmame  ending  in  MIL  signifies  sponsorship  from  a 
military-related  organization.  The  second-level  domain,  DDN,  indkaies  that  the  host  is  used  by  an  organization 
within  the  DDN.  The  third-level  domain,  NIC,  indicates  the  host  is  used  by  the  NIC. 

Between  the  root  servers  and  the  individual  hosts  arc  other  hosts  that  act  as  servers  and  contain  part  of  the 
information  within  the  DNS  hierarchy.  For  example,  a  program  looking  for  the  address  of  NIC.DDN.MIL  might 
first  send  a  query  to  a  root  server.  The  root  server  would  not  know  the  address  of  NIC.DDN.MIL  in  particular, 
but  would  direct  the  query  to  another  server  that  had  information  about  the  DDN.MIL  domain.  The  second 
server  would  know  which  hosts  provide  name  service  about  NIC.DDN.MIL  and  direct  the  query  to  those  hosts. 
Finally,  the  query  would  arrive  at  the  .specific  host  providing  name  service  for  NIC.DDN.MIL.  That  host  would 
return  the  network  address  information  via  the  DNS  to  the  host  that  initiated  the  query.  All  of  this  happens  very 
quickly — in  less  than  a  minute. 
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Mail  programs  must  know  ihc  address  of  each  host  lo  which  they  send  mail.  Users  normally  include  a  hosinamc 
in  the  headers  of  their  messages.  The  mail  program  queries  cither  the  DNS  or  a  host  table  ui  translate  that 
hostname  to  a  network  address.  This  enables  the  mail  message  to  be  delivered  i^ross  the  network. 

For  example,  if  a  user  named  Sam  wants  to  send  mail  to  his  friend  Joe  at  the  host  EXAMPLE.SAMPLE.COM, 
he  can  do  so  in  one  of  two  ways. 

1.  Via  the  Host  Table — 

•  The  host  EXAMPLE.SAMPLE.COM  is  registered  in  the  host  table  along  with  its  netaddress. 

•  The  mail  program  finds  the  correct  netaddress  from  the  host  table  on  the  sender’s  local  host 
and  sends  the  mail  to  Joe. 

In  this  method  of  transmission,  every  host  that  Sam  wants  to  communicate  with  must  be  listed  in 

the  host  table  file  on  his  own  host.  Sam  may  not  be  able  to  reply  to  messages  .sent  to  him  if  his 

host  does  not  recognize  the  hostname  in  the  sender’s  return  address. 

2.  Via  the  Domain  Name  System  - 

•  The  mail  program  trying  lo  deliver  a  message  addressed  to  JOE(2)EXAMPLE.SAMPLE.COM 
sends  a  tracker  called  a  query  lo  one  of  seven  root  servers. 

•  The  root  server  has  information  on  the  COM  top-level  domain  and  knows  which  two  domain 
servers  hold  further  information  on  the  SAMPLE.COM  domain. 

•  The  root  ser.  cr  points  the  query  to  those  domain  servers. 

•  When  the  query  arrives  at  the  ultimate  destination  server,  it  learns  the  netaddress  of  the  host 
EXAMPLE.SAMPLE.COM,  and  the  mail  program  obtains  the  information  necessary  to 
establish  a  path  from  the  sender’s  host  to  Joe’s  host. 

•  The  query  directs  the  mail  down  that  path  to  Joe’s  mail  account  on  the 
EXAMPLE.SAMPLE.COM  host. 


8.6  Government  Open  Systems  Interconnection  Profile  (GOSIP) 

The  Government  Open  Systems  Interconnection  Profile  (GOSIP)  is  a  document  that  describes  the  Government’s 
plans  to  transition  its  networks  from  the  TCP/IP-based  protocols  lo  intcmalional  protocols  based  on  the  Open 
Systems  Interconnection  (OSI)  Reference  Model.  The  goal  is  to  add  OSI-based  functions  to  the  Internet  without 
sacrificing  services  now  available  to  Internet  users. 

Several  documents  •'criain  to  GOSIP  or  its  implementation;  however,  we  will  mention  only  one  resource  that  will 
point  you  toward  the  most  current  information  available. 

RFC  1 169,  "Explaining  the  Role  of  GOSIP,"  [6]  discusses  how  GOSIP  should  be  applied  to  near-term  network 
planning  and  explains  the  role  and  applicability  of  the  GOSIP  document.  In  addition,  it  has  an  appendix  that 
describes  other  GOSIP  documents  and  tells  how  to  obtain  them.  The  appendix  also  lists  contacts  for  further 
information  regarding  the  documents.  This  RFC  will  probably  be  updated  as  the  status  of  GOSIP  changes,  so 
check  the  RFC  Index,  available  at  the  NIC,  to  ensure  that  you  have  the  most  current  information. 


68 


NIC  60001,  February  1993 


NETNV’ORK  SERVICE  CENTERS  AND  CONTACTS 


SECTION  9.  NETWORK  SERVICE  CENTERS  AND  CONTACTS 


The  three  main  service  centers  on  the  DDN  are; 

•  The  DDN  Network  Information  Center  (NIC) 

•  The  DDN  Network  Monitoring  Centers  (NMC)  for  the  United  States,  Pacific,  and  European  areas 

•  The  Defense  Information  Systems  Agency’s  Defense  Network  Systems  Organization  (DISA 
DNSO). 

This  section  of  the  Guide  describes  the  services  provided  by  these  organizations  and  gives  a  list  of  key  contacts 
for  each. 

This  section  also  tells  you  how  to  obtain  the  names  of  other  key  network  contacts,  including  the  following; 

•  Host  Administrators 

•  Node  Site  Coordinators 

•  Military  Communications  and  Operations  Command  Contacts. 

These  people  and  places  are  sources  of  network -related  information  and  help,  so  it  is  important  for  you  to 
familiarize  yourself  with  them. 


9.1  The  DDN  Network  Information  Center  (NIC) 

The  DDN  Network  Information  Center  (NIC)  is  located  at  Government  Systems,  Inc.  (GSI)  headquarters  in 
Chantilly,  Virginia.  The  NIC  is  funded  by  the  Defense  Information  Systems  Agency’s  Defense  Network 
Systems  Organization  (DISA  DNSO).  Its  mission  is  to  provide  general  reference  services  to  DDN  users  via 
telephone,  electronic  mail,  and  U.S.  mail.  The  NIC  is  the  first  place  to  turn  to  if  you  are  not  sure  who  provides 
the  service  you  need  or  who  is  the  right  person  to  contact.  Section  6  describes  the  NIC  services  in  detail. 


9.1.1  General  Reference  Service  Provided  by  the  NIC 

The  NIC  provides  several  kinds  of  user  assistance.  Its  main  Help  Desk  phone  numbers  are 
1  (800)  365-DNIC  (inside  the  U.S.) 

1  (703)  802-4535  (outside  the  U.S.  and  in  the  Washington,  DC,  metro  area) 

The  first  number  is  toll-free.  Service  is  available  Monday  through  Friday,  from  7  a.m.  to  7  p.m..  Eastern  time. 

The  NIC  Help  Desk  assists  those  who  experience  problems  with  the  network  and  with  tcrminal-to-TAC  use.  In 
addition,  the  NIC  is  happy  to  answer  questions  about  any  other  service  outlined  in  this  section. 
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The  NIC  host  computer’s  hostname  and  its  network  address  arc: 
NIC.DDN.MIL  1 92. 1 12.36.5 

NIC  online  services  are  available  24  hours  a  day,  7  days  a  week. 


9.1.2  NIC  Online  Contacts 

The  NIC  supports  several  online  mailboxes  to  provide  assistance  in  specific  areas. 


Type  of  Inquiry 

Network  Mailbox 

General  User  Assistance 

NIC@NIC.DDN.MIL 

TAC  and  Non-TAC  User  Registration 

REG1STRAR@NIC.DDN.MIL 

Urgent  Security  Matters 

N1C-ALERT@N1C.DDN.MIL 

Host,  Domain,  and  Net  Registration 

HOSTMASTER@NIC.DDN.MIL 

NIC.DDN.MIL  Computer  Operations 

ACTION@NIC.DDN.MIL 

Comments  on  NIC  Publications,  Services 

SUGGEST10NS@N1C.DDN.MIL 

Security  Concerns  and  Questions 

SCC@NIC.DDN.MIL 

Usage-Sensitive  Billing  Questions 

BILL1NG@NIC.DDN.MIL 

Automatic  Mail  Service 

SERVICE@NIC.DDN.MIL 

Reporting  NIC  Software  Bugs 

BUG-SERVICE@NIC.DDN.MIL 

9.1.3  NIC  U.S.  Mail  Address 


Network  Information  Center 
14200  Park  Meadow  Drive,  Suite  200 
Chantilly,  VA  2202  L2219 
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9,2  Network  Monitoring  Centers  (NMCs) 

The  three  Network  Monitoring  Centers  are; 

•  The  CONUS  MILNET  Monitoring  Center  (CMMC)  located  at  DISA  headquarters  in  Washington. 
DC.  The  CMMC  provides  a  toll-free  hotline  Trouble  Desk  phone  number  for  quick  retxjning  of 
network  problems. 

•  The  Pacific  MILNET  Monitoring  Center  (PMMC)  located  at  Wheeler  AFB  in  Hawaii. 

•  The  European  MILNET  Monitoring  Center  (EMMC)  located  in  Patch  Barracks,  Vaihingen, 
Germany. 

All  NMCs  provide  operations  support  for  several  DoD  packet-switching  networks.  The  NMCs  concenu^aic  on 
real-time  network  management,  with  the  primary  objective  of  maximizing  each  network’s  operating  cfncicr..y. 
In  addition,  they  receive  the  first  DDN  security  incident  reports. 

Bolt  Beranek  and  Newman,  Inc.,  Communications  Division  (BBNCD)  provides  DDN  with  operations  and 
technical  support,  configuration  management,  software  maintenance  and  enhancement,  hardware  maintenance, 
and  required  hardware. 

9.2.1  NMC  Services 

NMC  services  include  remote  status  monitoring,  coordination  of  network  outage  troubleshooting  effoas,  and 
24-hours-per-day,  7-days-per-week  technical  assistance  to  users.  The  NMCs  typically  work  on  backbone-related 
outages  consisting  of  node  and  circuit  problems;  they  provide  help  in  determining  whether  host  connectivity 
problems  are  network  related. 

Your  Host  Administrator  contacts  the  appropriate  NMC  for  all  network  hardware  problems,  hardware  field 
service,  problems  with  host  interfaces,  suspected  node  software  problems,  or  DDN  security  problems. 


9.2.2  NMC  Contacts 
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9.2.3  NMC  U.S.  Mail  Addresses 


CONUS  MILNET  Monitoring  Center 

DISA  Headquarters 

701  South  Courthouse  Rd. 

Arlington,  VA  22204-2199 
Attn:  MILNET  Manager 

European  MILNET  Monitoring  Center 

BBNCD 

DISA-Europe 

Box  1000,  Att;  DED 

APO  AE  09131-4103 


Pacific  MILNET  Monitoring  Center 
Defense  Information  Systems  Agency,  Pacific 
Wheeler  AFB,  HI  96854-5000 
Attn:  P-600 


9.3  Host  Administrators  and  Node  Site  Coordinators 

Each  host  has  a  representative  who  serves  as  its  technical  and  administrative  contact— the  Host  Administrator. 
The  Host  Administrator  provides  important  host-related  services  such  as  the  following: 

•  Collaborates  with  the  DDN  PMO  on  security  matters  involving  hosts, 

•  Interprets  network  policies  as  they  apply  to  his/her  host, 

•  Decides  which  users  may  access  the  network  (within  the  guidelines  set  by  the  DDN  PMO), 

•  Authorizes  user  access  to  the  MILNET  Terminal  Access  Controllers  (TACs)  and  Mini-TACs, 

•  Helps  network  users  with  technical  problems  involving  hosts,  and 

•  Works  with  the  Network  Information  Center  and  the  Network  Monitoring  Centers  to  provide 
information  and  technical  assistance. 

Each  network  node,  or  PSN,  has  a  Node  Site  Coordinator  (NSC).  The  Node  Site  Coordinator  is  the  local  site 
representative  who  has  access  control,  accountability,  and  coordination  responsibility  for  the  DDN-owned 
network  hardware,  software,  and  circuits  located  at  the  node  site. 

Occasionally,  one  person  serves  both  roles.  A  Host  Administrator  or  Node  Site  Coordinator  may  also  designate 
an  alternate  who  can  assist  with  the  administrative  or  technical  demands  of  the  position. 

To  find  the  names,  addresses,  telephone  numbers,  and  network  mailboxes  for  the.':"  contacts,  sec  Section  6.3. 
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9.4  Military  Communications  and  Operations  Command  Contacts 


Each  military  department  has  designated  an  organization  to  serve  as  the  primary  DDN  Point  of  Contact. 
Requests  for  information  or  assistance  should  be  directed  to  the  following  organizations; 


Service 

Address 

Telephone 

DSN 

Air  Force 

AFDDN  PMO 

Gunter  AFS,  AL  36224-6340 

1  (205)  279-4075/3290 

446-4075 

Army 

USAISC,  AS-PLN-RF 

Fort  Huachuca,  AZ  85613-5(K)0 

1  (602)  538-6915 

879-6915 

Navy 

COMNAVTELCOM,  Code  N521 
Washington,  DC  20390-5290 

1  (202)  282-0381/2 

292-0381 

9.5  Defense  Information  Systems  Agency,  Defense  Network  Systems  Organization 
(DISA  DNSO) 

[NOTE;  The  Defense  Communications  Agency,  DCA,  became  the  DISA  in  1991;  in  the  same 
year,  the  Defense  Communications  System  Organization  became  the  DNSO.) 

The  Defense  Information  Systems  Agency,  Defense  Network  Systems  Organization  (DISA  DNSO)  is  responsible 
for  overall  management  of  the  Defense  Data  Network  (DDN).  DDN  Newsletter  58,  available  online  as 
DDN-NEWS/DDN-NEWS-58.TXT  from  the  NIC.DDN.MIL  host,  contains  the  most  current  listing  of  DISA 
DNSO  personnel  and  their  areas  of  responsibility.  Contact  the  NIC  to  ensure  that  this  newsletter  still  reflects  the 
most  current  information  on  DNSO  staff  contacts. 


9.6  If  You  Have  a  Network  Use  Problem 


For  Questions  on: 


Contact: 


Terminal  settings 
Host  login 

MILNET  TAC  access 
TAC  login  procedure 
TAC  line  problems 
TAC  phone  numbers 
General  DDN  information 
Host  line  problems 


Host  Administrator  or  User  Representative 
Host  Administrator  or  User  Representative 
Host  Administrator  for  your  primary  MILNET  host 
Network  Information  Center 

TAC  Node  Site  Coordinator  or  the  Monitoring  Center 
NIC  TACNEWS  program 
Network  Information  Center 
Respective  Network  Monitoring  Center 
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SECTION  10.  BIBLIOGRAPHY 


Many  of  the  manuals  and  documents  listed  below  arc  cited  in  this  Guide',  others  provide  information  that  should 
be  helpful  to  you  as  users  of  the  DDN.  When  available,  ordering  numbers  arc  given  for  items  that  can  l>c 
ordered  from  the  Defense  Technical  Information  Center  (DTIC)'  or  from  DISA.  Hardcopies  of  some  of  the 
documents  are  available  from  SRI  International,  Menlo  Park.  CA. 

If  the  NIC  offers  online  versions,  the  filenames  arc  shown  in  brackets. 
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SECTION  II.  GLOSSARY 


acoustic  coupler  A  type  of  modem  that  converts  digital  signals  into  sound  for  transmission  through 

telephone  lines  and  performs  the  reverse  operation  when  receiving  such  signals  Acoustic 
couplers  generally  have  cups  into  which  the  telephone  handset  is  placed  to  make  the 
connection. 

anonymous  login  convention 

Standard  username  (anonymous)  and  password  (guest)  that  allows  a  user  to  log  m  w  ithin 
FTP  for  the  purpose  of  relieving  an  unprotected  public  access  file. 

ARPANET  Packet-switched  network  developed  by  the  Defense  Advanced  Rcscaah  Projects  Agency. 

ASN  Autonomous  System  Number.  A  number  assigned  by  the  NIC  to  an  autonomous  network 

that  request  connection  to  the  Internet. 

backbone  The  nodes  (PSNs),  the  TACs,  and  the  telephone  lines  connecting  them  that  form  the  com 

of  the  DDN. 

Bolt  Bcranck  and  Newman,  Inc.,  Communications  Division;  a  major  hardware  and  software 
developer  for  the  DDN. 

Bits  per  second.  The  unit  used  for  measuring  line  speed,  i.e,,  the  number  of  informauon 
units  transmitted  per  second. 

Software  differentiation  between  uppercase  and  lowercase  characters. 

Computer  Emergency  Response  Team,  the  DARPA-sponsored  group  responsible  for 
coordinating  many  security  incident  response  efforts. 

A  type  of  network  connection.  A  circuit-switched  connection  is  a  continuous  clcclrical 
connection  established  between  sending  and  receiving  users  for  their  exclusive  use.  The 
connection  remains  active  until  it  is  closed  by  the  using  panics. 

A  gateway;  that  is,  a  computer  that  interconnects  networks. 

An  access  path  between  two  ports  on  a  network,  established  for  data  transmission  between 
the  ports. 

Military  acronym  for  the  Continental  United  Stales. 

Defense  Advanced  Research  Project  Agency.  The  agency  that  created  and  administered  the 
ARPANET. 

DCA  DCSO  Defense  Communications  Agency,  Defense  Communications  System  Organization;  the 

group  responsible  for  administering  the  DDN.  (Now  known  as  the  Defense  Information 
Systems  Agency,  Defense  Network  Systems  Organization — DISA  DNSO.) 


concentrator 

connection 

CONUS 

DARPA 


BBNCD 

bps 

ease  sensitive 
CERT 

circuit-switched 
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DON 

DIIS 

DISA  DNSO 

DNS 

DoD 

DRl 

DSN 

DTIC 

FQDN 

FTP 

FYI 

gateway 

GOSIP 

handle 

host 

hostname 

IMP 

INCe 

Internet 

internetwork 

IP 


Defense  Data  Network.  The  DoD  long-haul,  packet- switched  computer  tommuiucations 
network  that  includes  the  MILNET  as  one  of  its  subnetworks. 

The  DDN  Installation  and  Information  Services  conuriKt,  which  encompasses  the  NIC  and 
its  services.  Also  the  NIC  handle  of  the  DIIS. DDN, MIL  host. 

Defense  Information  Systems  Agency.  Defease  Network  Sy.stems  Orgamxauon.  Formerly 
the  DCA  EXTSO  (see  above). 

Domain  Name  System.  The  hierarchical,  distributed  databa.se  used  for  kist  name  and 
address  resolution  that  has  replaced  the  need  for  a  centralized  host  table. 

Department  of  Defense. 

Defense  Research  Internet.  A  network  that  will  provide  state-of-the-art  internetworking 
services  for  the  DoD.  It  is  sUll  in  the  planning  stages. 

Defense  Swiicncd  Network.  A  proprietary  Government  telephone  network. 

Defense  Technical  Information  Center.  Cameron  Station,  Alexandria,  VA  22.314.  A 
depository  for  many  DoD  technical  reports. 

Fully  Qualified  Domain  Name.  The  complete  hostname  that  a'flecLs  the  domains  of  which 
the  host  is  a  part. 

File  Tran.sfer  Protocol.  A  network  utility  for  copying  files  across  the  network;  defined  in 
RFC  959. 

A  "For  Your  Information"  document,  issued  also  as  an  RFC,  that  contains  information  of 
genera!  interest  to  the  Internet  community. 

A  computer  that  interconnects  networks. 

Government  Open  Systems  Interconnection  Profile.  A  document  that  addresses  the  DDN's 
planned  transition  from  TCP/IP  protocols  to  OSI  protocols. 

Unique  character  string  identifier  as.signcd  to  each  entry  in  the  NIC  WHOIS  database. 

A  computer  connected  to  a  PSN  on  the  DDN. 

A  name  that  officially  identifies  each  computer  attached  to  the  DDN. 

Interface  Message  Processor;  see  PSN. 

The  Internet  Control  Center.  The  service  center  that  provides  help  to  Air  Force 
concentrator  users. 

The  specific  IP-based  internetwork  of  which  the  DDN  is  a  part. 

A  network,  such  as  the  DDN,  that  consists  of  many  interconnected  networks. 

Internet  Protocol.  A  DoD  standard  protocol  that  allows  dissimilar  hosts  to  connect  to  each 
other  through  the  DDN,  defined  in  RFC  791. 
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IR 

Kermii 

LAN 

long-haul  nel 

mailbridge 

MIL  STD 
MILNET 
modem 

MTAC 

NETINFO 

network 

NIC 

NIC.DDN.MIL 

NICNAME 

NIC/Query 

NMC 

NNSC 

node 

NREN 

NSC 

NSFNct 


Inicmei  Registry.  The  function  at  the  NIC  that  assigns  ofncial  IP  network  numbers. 

An  error -checking  file-transfer  protocol  used  to  copy  files  from  one  computer  to  another. 
Also  the  name  given  to  the  public  domain  software,  disuibutcd  by  Columbia  University, 
that  supports  this  protocol. 

Lcx'al  Area  Network,  A  network  of  directly  connecu;d  machines  u.sually  loctaied  within  10 
miles  of  one  another. 

A  network  spanning  long  geographic  distances,  usually  connected  by  telephone  lines  or 
satellite  radio  links. 

A  gateway  between  the  MILNET  and  the  Internet,  through  which  mail  and  other  data 
passes. 

Military  Standard.  The  official  military  version  of  a  specification. 

The  DDN  unc!a.ssified  operational  military  network. 

A  device  that  converts  digital  signals  into  analog  signals  (and  back)  for  transmission  over 
telephone  lines  (modulator/dcmcxiulaior). 

Or  Mini-TAC.  A  new,  improved  machine  that  allows  remote  network  access  in  cs.scniially 
the  same  manner  as  a  TAC,  but  tK:commodatcs  a  wider  variety  of  operating  systems. 

The  name  of  the  publicly  accessible  directory  on  the  N1C.DDN.MIL  host  that  stores  many 
files  of  interest  to  users  of  the  network. 

The  hardware,  software,  and  connections  needed  to  distribute  the  processing  of  data  in  a 
reliable  and  efficient  manner  and  to  enable  users  to  exchange  and  share  that  data. 

DDN  Network  Information  Center,  located  at  GSl  headquarters  m  Chantilly,  VA. 

The  hostnamr  of  the  NIC  host.  Its  network  addre.ss  is  192.1 12.36.5. 

Sec  WHOIS. 

A  general  information  program  on  NIC.DDN..MIL. 

Network  Monitoring  Center.  The  CONUS  MILNET  NMC  is  located  at  701  S,  Courthouse 
Rd.,  Arlington,  VA  22204-2199.  Others  arc  located  in  Europe  and  Hawaii. 

The  National  Science  Foundation’s  Network  Service  Center.  The  center  that  provides 
support  for  the  NSFNct  backbone.  The  NNSC  also  publishes  the  Internet  Rcsouac  Guide. 

On  the  DDN,  a  packet  switch  or  PSN.  A  computer  that  handles  network  message  traffic. 

The  National  Research  and  Education  Network,  the  planned  high-speed  national  network 
that  will  provide  a  platform  for  research  and  educational  networking  efforts. 

Node  Site  Coordinator.  The  local  DDN  contact  responsible  for  node  or  TAC  equipment. 

The  packet-.swilchcd  network  titat  is  the  backbone  of  much  of  the  Internet. 
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NSO 

NTIS 

OCONUS 
operating  system 
OSD 

packet  switching 
pathname 

packet 

POC 

protocol 

PSN 

RFC 

see 

server 

SERVICE 

session 

SIG 
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Network  Security  Officer.  The  NSO  is  rc.sponsiblc  for  scuing  DDN  security  policy  and 
overseeing  its  implcmcniation. 

National  Technical  Information  Service,  U.S.  Department  of  Commerce,  Springfield,  VA 
22151,  (703)  4874650.  A  national  depository  for  unclassified  technical  documents. 

A  military  acronym  for  "Outside  the  Continental  U.S." 

Software  that  supcrvi.scs  and  controls  tasks  on  a  computer. 

Office  of  the  Secretary  of  Defense. 

A  data  transmission  system  that  uses  addressed  packets,  and  in  which  a  communications 
channel  is  occupied  only  for  the  duration  of  the  packet  transmission. 

A  character  string  that  fully  identifies  a  file.  Pathnames  normally  contain  (or  imply)  device 
and/or  directory  names  and  a  filename  specification.  FTP,  TELNET,  and  electronic  mail 
do  not  specify  a  .standard  pathname  convention.  Each  user  must  follow  the  file  naming 
conventions  of  the  file  systems  he  wishes  to  use. 

The  basic  unit  of  data  iransmiucd  over  the  DDN.  Each  packet  contains  a  header,  which 
consists  of  addressing  and  other  control  information  and,  optionally,  any  associated  data 
destined  for  a  network  user  proces.s. 

Point  of  Contact. 

Technical  specifications  governing  the  format  and  timing  of  information  exchange  between 
two  communicating  software  processes. 

Packet  Switch  Node.  A  store-and-forward  packet  switch  (formerly  called  an  IMP). 

Request  For  Comment.  A  series  of  technical  notes  describing  DARPA  and  DDN  research 
and  development,  particularly  in  the  areas  of  protocol  design  and  inlcmclworking. 

Available  for  anonymous  FTP  at  N1C.DDN.MIL  in  the  /rfc  directory. 

The  Security  Coordination  Center,  located  at  the  NIC,  that  is  responsible  for  collecting 
security-related  information,  cooperating  with  the  NSO  in  security  incident  response,  and 
issuing  DDN  Security  Bulletins. 

A  process  providing  a  generalized  service  to  subscribing  user  processes.  Server  processes 
normally  "listen"  on  a  network  address,  ready  to  respond  to  an  incoming  .service  rcquc.st. 
The  FTP  Server  is  such  a  process;  it  responds  to  file  transfer  requests  from  FTP  users. 

The  name  of  the  NIC’s  automatic  mail  server,  SERVICE@NIC.DDN.MIL.  Send  a 
mes.sage  to  SERVICE@NIC.DDN.MIL  with  subject;  HELP  for  more  information. 

The  time  during  which  a  connection  remains  open  between  a  user  and  server  port  on  a 
network.  For  example,  in  an  FTP  session,  the  end-user  invokes  FTP.  names  the  server  host 
he  wishes  to  connect  with,  issues  FTP  commands,  and  logs  off. 

Special  Interest  Group.  An  online  mailing  group  whose  members  exchange  information  on 
a  particular  topic. 
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site 

SMTP 

socket 

SRI 

SunOS 

TAC 

TAC  Access  Code 
TAC  Userid 
TACACS 

TACNEWS 

TCP/IP 

TELNET 

terminal 

TIP 

UNIX 

user 

WHOIS 


Organization  or  facility  where  a  host  is  located. 

Simple  Mail  Transfer  Protocol.  Defined  in  RFC  821. 

Logical  address  of  a  communications  access  point  to  a  specific  device  or  program  on  a 
host. 

SRI  International,  Menlo  Park,  CA,  former  location  of  the  DDN  Network  Information 
Center  and  early  contributor  to  the  development  of  the  DDN. 

Sun  Microcomputer  Systems’  proprietary  UNIX-based  operating  system.  The  operating 
system  used  by  the  NIC  host 

Terminal  Access  Controller.  A  special  type  of  computer  attached  to  a  PSN.  It  allows 
direct  terminal  access  to  the  DDN  backbone. 

Password  assigned  to  MILNET  TAC  users  for  TAC  login. 

Alphanumeric  character  string  that  identifies  a  TAC  user  upon  TAC  login. 

TAC  Access  Control  System.  A  password  system  that  limits  use  of  TACs  to  authorized 
users. 

NIC  program  for  reading  DDN  Newsletters,  Bulletins,  and  other  items  of  interest  to  TAC 
users. 

Transmission  Control  Protocol/Intcmct  Protocol.  DoD  standard  network  protocols  defined 
in  RFC  793  (TCP)  and  RFC  791  (IP). 

A  protocol  for  opening  a  transparent  connection  to  a  distant  host;  defined  in  RFC  854. 

A  communication  device  that  lets  a  user  send  information  to  a  computer  by  typing  on  a 
keyboard.  It  prints  responses  from  the  computer  on  paper  or  a  screen. 

Terminal  Interface  Processor.  A  predecessor  of  the  TAC,  serving  a  similar  function.  Sec 
TAC. 

An  AT  &  T  Bell  Laboratories  {woprietary  operating  system  that  runs  on  large  and  small 
computers.  It  has  become  widely  used  in  the  scientific  research  and  development 
community. 

A  human  end-user  or  an  automated  user  procc.ss  authorized  to  access  network  services. 
NIC  program  used  to  access  the  NIC  electronic  white  pages  database. 
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APPENDIX  A.  NETWORK  RESOURCES 


One  of  ihc  questions  new  users  frequently  ask  when  they  finally  gel  access  to  the  network  is,  "Now  what? 
What’s  out  there?"  This  section  lists  a  few  places  you  can  look  for  more  information  about  what  is  available  to 
Internet  users. 


Special  Interest  Groups 

An  important  part  of  the  Internet  arc  its  many  online  Special  Interest  Groups  (SIGs),  which  discuss  topics 
ranging  from  artificial  intelligence  to  Zenith  PCs.  A  SIG  is  an  electronic  mailing  list  dedicated  to  the  discussion 
of  a  particular  topic.  SIGs  are  a  good  way  for  a  new  user  to  learn  more  about  the  network.  Anyone  can 
contribute  to  a  SIG  by  simply  sending  mail,  and  most  SIGs  are  open  for  anyone  to  join.  Information  on  network 
SIGs  can  be  found  in  a  file  nicknamed  the  List-of-Lists,  a  master  list  of  SIGs  with  a  brief  description  of  each 
group  and  how  to  join  it. 

For  users  who  have  never  done  a  file  transfer  before,  this  is  a  perfect  first  opportunity.  You  can  use  FTP  to 
copy  the  List-of-Lists  from  the  FTP.NISC.SRI.COM  host  by  logging  in  with  "userid  anonymous"  and 
"password  guest"  and  using  the  pathname  NETINFO:INTEREST-GROUPS. 

Note  that  many  individual  hosts  redistribute  mail  for  their  users — that  is,  mailing  list  messages  or  digests  are 
delivered  once  to  a  single  local  mailbox,  and  then  they  are  announced  or  forwarded  to  a  list  of  interested  local 
users.  Mail  redistribution  eliminates  the  need  for  the  local  mailer  to  process  myriad  copies  of  the  same  mcs.sage 
directed  to  different  users  and  so  conserves  local  computer  resources.  Before  adding  your  name  to  a  SIG 
distribution  list,  ask  your  Host  Administrator  or  User  Representative  if  SIG  or  digest  mail  is  redistributed  on 
your  host  or  posted  in  a  centralized  place  to  be  read  by  all  local  users. 

In  addition,  all  traffic  on  the  MILNET  is  subject  to  usage-sensitive  billing,  so  before  adding  your  name  to  a  SIG, 
be  sure  that  the  mail  traffic  you  would  generate  is  consistent  with  the  usage  policies  of  your  host. 


NNSC  Internet  Resource  Guide 

The  NSF  Network  Service  Center  (NNSC)  compiles  and  makes  available  an  Internet  Resource  Guide.  The  goal 
of  the  guide  is  to  increase  the  visibility  of  various  Internet  resources  that  might  help  users  do  their  work  bcucr. 
While  not  yet  an  exhaustive  list,  the  guide  is  a  useful  compendium  of  many  resources  and  can  be  very  helpful  to 
a  new  user. 

In  the  NNSC  guide,  resources  are  grouped  into  sections  by  type.  Current  sections  include  descriptions  of  online 
library  catalogs,  data  archives,  online  white  pages  directory  services,  networks,  nctworic  information  centers,  and 
computational  resources  such  as  supercomputers.  Each  entry  contains  the  following  information; 

•  a  description  of  the  resource, 

•  an  identification  of  who  can  use  the  resource, 

•  an  explanation  of  how  to  reach  the  resource  network  via  the  Internet, 

•  a  list  of  contacts  for  more  information. 
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The  NNSC  distributes  the  list  electronically.  To  receive  a  guide,  or  to  get  on  a  mailing  list  that  alerts  you  when 
it  is  updated,  send  a  message  to  resource-guide-request@nnsc.nsf  .net. 


FYI  Documents 

"FYIs"  arc  a  series  of  special  RFCs.  The  FYI  documents  address  information  that  is  of  general  interest  to  the 
Internet  user  community.  They  do  not  define  standards  or  contain  protocol  specifications.  Rather,  they  address 
more  general  topics,  provide  insight  into  Internet  conventions,  answer  commonly  asked  questions,  contain 
background  or  historical  information,  or  provide  resource  information  such  as  bibliographies  or  descriptions  of 
software.  Some  FYIs  are  addressed  specifically  to  new  users. 

Because  FYIs  are  also  RFCs,  they  arc  listed  along  wiili  all  the  other  RFCs  in  the  RFC  Index.  However,  the  file 
fyi/fyi-index.txt  on  the  NIC  host  lists  only  the  FYIs.  Each  index  notes  both  the  FYI  number  and  the  RFC 
number  of  each  FYI.  You  can  obtain  the  FYI  Index  online  by  FT  Ping  it  or  by  requesting  it  through  the 
SERVICE@NIC.DDN.MIL  mail  service.  See  Section  5.1.2  for  FTP  guidelines  and  Section  6.3.5  for  directions 
on  retrieving  information  via  SERVICE. 


NIC  Contacts  Files 

Often  users  need  to  communicate  with  the  official  Point  of  Contact  (POC)  responsible  for  a  specific  network  or 
domain.  While  this  information  is  available  via  the  WHOIS  program  on  the  NIC  host,  as  described  in  Section 
6.3.1,  the  NIC  also  provides  files  that  contain  compilations  of  the  contacts  for  domains  and  networks.  These 
files  are  updated  weekly  and  provide  a  central  resource  for  useful  domain  and  network  POC  information. 

•  nctinfo/network-contacts.txt  lists  all  assigned  networks  by  number  and  lists  the  name  of  the 
network,  plus  the  name,  phone  number,  and  electronic  mailbox  for  each  POC. 

•  netinfo/domain-contacts.txt  is  organized  by  domain  name  and  lists  the  name,  phone  number,  and 
electronic  mailbox  for  each  domain  POC. 

With  the  network  information  sources  and  contacts  just  outlined  and  the  tools  introduced  in  the  previous  section, 
you  are  now  ready  to  explore  the  network  on  your  own. 
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APPENDIX  B.  COMMONLY  ASKED  QUESTIONS 


Here  are  answers  to  some  of  the  questions  most  commonly  asked  by  users.  Tiic  selections  were  made  from 
questions  addressed  to  the  DDN  Network  Information  Center.  (See  Sections  6.1  for  NIC  network  and  U.S.  mail 
addresses.) 


1.  I  want  to  send  mail  to  my  colleague.  John  Smith.  What  is  his  network  mailbox? 

Answer; 

The  NIC  provides  an  online  program  called  WHOIS  (or  NICNAME)  that  contains  the  names,  addresses, 
phone  numbers,  and  online  mailboxes  of  many  network  users.  Since  some  Host  Administrators  install 
this  program  on  their  host,  you  should  ask  him/her  if  it  is  available  locally.  Alternatively,  you  may 
make  a  TELNET  connection  to  NIC.DDN.MIL  and  use  the  WHOIS  program  running  on  the  NIC  host. 
(Login  to  NIC.DDN.MIL  is  not  required.)  The  WHOIS  program  may  also  be  accessed  via  elecuonic 
mail.  Send  a  message  to  SERV1CE@NIC.DDN.MIL  and  include  the  word  WHOIS  and  the  item  you 
wish  to  search  for  in  the  subject  line  of  your  message.  You  will  receive  an  answer  overnight.  For  more 
information  on  using  SERVICE,  see  Section  6.3.5. 


2.  This  TAC  phone  number  doesn’t  work.  What  should  I  do? 

Answer; 

The  Network  Information  Center  can  n7  to  access  the  TAC  from  its  site  to  determine  if  the  problem  is 
in  the  TAC  or  if  it  relates  to  your  equipment  or  the  procedure  you  are  using.  If  the  problem  is  the 
TAC,  we  can  give  you  phone  numbers  for  other  TACs.  We  can  help  you  coordinate  with  the  MILNET 
Monitoring  Center  to  report  the  TAC  problem. 

3.  I  wil.  be  traveling  and  need  to  log  in  to  read  my  mail.  How  can  I  find  a  TAC  phone  number  to  use 
while  I’m  on  the  road? 

Answer; 

You  can  locate  TAC  phone  numbers  in  several  ways.  The  back  of  your  TAC  card  lists  many  of  them. 
The  TACNEWS  program  available  on  the  NIC.DDN.MIL  host  has  a  menu  option  that  will  show  you 
the  three  TACs  closest  to  a  phone  number  you  provide.  TACNEWS  also  provides  lists  of  phone 
numbers  for  TACs  both  within  and  outside  the  U.S.  See  Section  6.3.2. 1  for  an  example  of  TACNEWS 
usage.  In  addition,  if  you  call  the  NIC  Help  Desk,  we  will  be  happy  to  provide  you  with  phone 
numbers  of  TACs. 


4.  What  is  the  difference  between  the  MILNET  and  the  DDN? 

Answer; 

The  MILNET  is  a  wide  area  network  that  con.stitutes  one  subnetwork  of  the  DDN.  The  MILNET 
carries  unclassified  operational  data.  It  is  the  segment  of  the  DDN  that  is  connected  to  the  internet. 
The  other  subnetworks  of  the  DDN  carry  classified  information  and  arc  standalone  networks. 
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5.  What  is  the  difference  between  the  MILNET  and  the  Internet? 

Answer: 

The  Internet  is  a  collection  of  TCP/IP-based  wide  area  and  local  area  nctwwks  that  arc  interconnected 
by  various  gateways  so  that  users  on  one  network  can  communicate  to  users  on  any  of  the  other 
networks.  In  addition,  some  non-TCP/IP-bascd  networks,  such  as  BITNET,  arc  acvcssiblc  U)  Internet 
users  via  electronic  mail.  These  networks  arc  usually  not  strictly  considered  a  part  of  “the  Internet " 

The  MILNET  is  a  wide  area  network  that  is  conna'ied  to  the  Intcmci  via  connections  called  the  Federal 
Inter-agency  Exchanges  (FIXs). 

6.  I  see  a  connection  on  my  host  from  a  network  number  1  don't  recognize.  How  can  I  find  the  number  of 
someone  to  contact  on  that  network  to  check  on  this  connection? 

Answer: 

Every  IP  network  number  assigned  by  the  Internet  Registry  at  the  NIC  has  a  registered  Point  of  Contact 
(POC)  who  is  responsible  for  that  network.  To  find  a  particular  POC,  you  can  look  up  the  number  of 
the  network  via  the  NIC’s  WHOIS  program.  Search  only  on  the  network  portion  of  the  number  and 
type  the  local  portions  as  zeroes.  (See  Section  8.4  for  a  brief  explanation  of  network  addressing.  See 
Section  6.3.1  for  how  to  use  WHOIS.)  In  addition,  the  NIC  provides  a  publicly  accessible,  regularly 
updated  flic  that  lists  all  the  POCs  for  each  network  number  assigned.  The  file  is 
netinfo/network-contacts  .  txt.  The  POC  information  is  listed  by  network  number. 


7.  How  do  I  gel  a  TAC  card? 

Answer; 

Before  you  can  get  a  TAC  card,  you  must  have  an  account  on  a  host.  Then  the  Host  Adminisuaior  of  a 
MILNET  host  (that  is,  a  host  whose  address  is  on  network  26)  must  approve  a  TAC  card  for  you.  See 
Section  4  for  a  more  complete  explanation  of  TAC  cards  and  TAC  usage. 


8.  What  is  an  RFC? 

Answer; 

As  RFC  1 177  (8]  explains,  the  Request  for  Comments  documents  (RFCs)  arc  working  notes  of  the 
Internet  research  and  development  community.  A  document  in  this  series  may  be  on  essentially  any 
topic  related  to  computer  communication,  and  may  consist  of  anything  from  a  meeting  repm  to  the 
specification  of  a  standard.  Most  RFCs  arc  descriptions  of  network  protocols  or  services,  often  giving 
detailed  procedures  and  formats.  These  RFCs  generally  provide  information  in  sufficient  technical  detail 
to  enable  developers  to  create  implementations.  Other  RFCs  report  on  the  results  of  policy  studies  or 
summarize  the  work  of  technical  committees  or  workshops.  Currently,  all  Internet  standards  arc 
published  as  RFCs,  but  not  all  RFCs  are  standards.  RFCs  arc  publicly  available  on  the  NIC.DDN.MIL 
host.  Indexes  of  RFCs  organized  by  number  (in  reverse  order  with  the  most  current  RFC  at  the  top),  by 
author,  or  by  title  are  available  from  the  NIC  as  well.  Hardcopies  arc  available  from  SRI  International 
in  Menlo  Park,  CA  (the  former  NIC). 


9.  May  I  be  registered  in  the  WHOIS  database? 

Answer: 

Any  TAC  user  must  be  registered  with  the  NIC.  In  addition,  any  other  MILNET  user  can  be  added  to 
the  WHOIS  database  if  te  has  a  working  network  mailbox.  Information  regarding  a  registered  u.scr. 
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such  as  his  address  and  network  mailbox,  is  visible  via  the  WHOIS  prt^rani  I  hus,  WHOIS  acts  as  a 
"white  pages"  directory  of  network  users,  enabling  other  users  to  ascertain  where  to  send  mail  to  ilicin, 
cither  electronically  or  via  the  U.S.  postal  service.  To  register  in  the  database.  Eili  out  the  atnplate 
provided  in  Section  6.2.1  (or  the  version  currently  approved  and  located  in  the  NIC  terrpiates 
directory)  and  return  it  online  to  REGISTRAR^ntc  .DDN  .mil.  The  NIC  de{K-ivds  on  users  ui  sitid 
updated  information  whenever  their  addresses  or  mailboxes  change. 
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